Information Security Specialist

Company

Federal Reserve Bank of Kansas City

When you join the Federal Reserve—the nation's central bank—you’ll play a key role, collaborating with leading tech professionals to strengthen and protect our economic, financial and payments systems.

We invest in contemporary and emerging technology each year to support the Federal Reserve and our economy, and we’re building a dynamic and diverse team for our future.

Important Information


* Open to US citizens, Green Card holders or Permanent Residents with at least 3 years of residency, with the intent to become a US citizen.


* No sponsorship is available.

Candidates must have valid work authorization, without an end date, to be considered.


* This position requires working on-site, in Kansas City, Denver, Oklahoma City, or Omaha, with 5 days per month remote work flexibility.


* This position is not eligible to be remote and relocation assistance is not available.

We are seeking cybersecurity professionals to join our Information Security team as a security specialist focused on operating our DevSecOps program according to standards and policies.

This will be done through close partnership with peers in FRB Kansas City and other Reserve Banks across the System.

It will also require healthy relationship building and tight integration with development teams.

Additionally, you’ll partner with business areas, vendors, and our diverse network of professionals to identify, implement, and support security across the organization.

Candidates with strong understanding and experience in cloud environment deployments, information security, data management, low-code and no-code solutions, DevSecOps, and artificial intelligence will be ideal.

Key Activities


* Interpret and evaluate policies in order to mature and implement the DevSecOps program.


* Assess maturity of development teams’ DevSecOps practices against an existing framework.


* Proactively advocate for and drive enhancements into the program.


* Identify gaps/opportunities for enhancements to workflows and processes for enhancing the software development lifecycle (SDLC).


* Implement and consults on secure continuous integration and continuous delivery (CI/CD) pipelines, evaluating code and/or applications, or creating code to facilitate the process.


* Monitors information security policy compliance using security tooling.


* Evaluate and implement security products and/or processes to enhance productivity and effectiveness for various platforms and initiatives.


* Provide technical expertise and support to internal teams on security-related matters.


* Collaborate with cross-functional teams to integrate security measures into existing software applications and infrastructure.


* Stay current with emerging technologies, industry trends, and best practices in cybersecurity to enhance our security posture.


* Support leadership decision making through timely analysis...