Cloud Security Principal Engineer

The Cloud Security Principal Engineer position at Ally is a member of the Information Protection and Risk Management team and works closely with other members of the IPRM program to identify, manage, and mitigate security risks at Ally. The engineer is part of a broader team of security engineers reporting to the Director, Cloud Security who is responsible for developing, deploying, and integrating technical controls and tools to meet specific security requirements, as well as defining processes and standards to ensure that security configurations and tools are maintained.

At this time, Ally will not sponsor a new applicant for employment authorization for this position.

The Work Itself

• Primary responsibility will be to support our existing security controls and security projects with automation and orchestration development for existing processes associated with management, integration, and operation of cloud security and AI security technologies.
• Develop and mature optimization and productivity enhancement of cloud-focused security security technologies for security posture and compliance management, and to assist in opportunity for efficient operation of GenAI Security
• Perform architecture and engineering responsibilities in support of existing technologies and new security projects.
• Perform daily, weekly and monthly health checks, user activity audits and must have good knowledge in determining baseline offsets, and to automate the process at all opportunities
• Identify, Implement, and Operationalize security technologies and processes to improve visibility and reduce risk
• Partner with other technical leaders throughout the organization to refine and mature Ally's security posture for cloud-based technologies and platforms, as well as identifying and maturing our application security capabilities, including AI security and promoting AI adoption.
• Consult with project teams to ensure that platform and application architecture has proper security controls in place (focused on Cloud Providers / SaaS engagements)
• Cloud Platform Security and DevSecOps / Pipeline Security /GenAI Security

• 7+ years of relevant experience or equivalent combination of education and experience
• High School Diploma or GED equivalent, * Demonstrated technical expertise in two or more technology areas (compute, storage, network, data, etc)
• as a software developer or automation engineer with knowledge of automation, Infrastructure as Code and DevOps + CI/CD tools and processes
• 5+ years of experience in information security practices, controls, and governance (CISSP preferred)
• 5+ years as developer familiar with python, powershell, and other scripting languages in wide use by cybersecurity
• 5+ years of experience as a technical resource within an IT organization (enterprise / matrixed organization preferred)
• 3+ years of experience with cloud platforms (operational experience preferred for AWS, Azure, GCP, etc)
• builds partnerships, translates complexities into simple terms, ability to maintain focus on objectives
• process/procedures, standards/policies, architectures, etc)

Ally's compensation program offers market-competitive base pay and pay-for-performance incentives (bonuses) based on achieving personal and company goals. But Ally's total compensation - or total rewards - extends beyond your paycheck and is designed to support and enrich your personal and professional life, including: * Time Away: competitive holiday and flexible paid-time-off, including time off for volunteering and voting. * Planning for the Future: plan for the near and long term with an industry-leading 401K retirement savings plan with matching and company contributions, student loan and 529 educational assistance programs, tuition reimbursement, and other financial well-being programs. * Supporting your Health & Well-being: flexible health and insurance options including dental and vision, pre-tax Health Savings Account with employer contributions and a total well-being program that helps you and your family stay on track physically, socially, emotionally, and financially. * Building a Family: adoption, surrogacy, and fertility support as well as parental and caregiver leave, back-up child and adult/elder day care program and childcare discounts. * Work-Life Integration: other benefits including LifeMatters Employee Assistance Program, subsidized and discounted Weight Watchers program and other employee discount programs.

Ally Financial only succeeds when its people do - and that's more than some cliché people put on job postings. We live this stuff! We see our people as, well, people - with interests, families, friends, dreams, and causes that are all important to them. Our focus is on the health and safety of our teammates as well as work-life balance and diversity and inclusion. From generous benefits to a variety of employee resource groups, we strive to build paths that encourage employees to stretch themselves professionally. We want to help you grow, develop, and learn new things. You're constantly evolving, so shouldn't your opportunities be, too?, Ally Financial is a customer-centric, leading digital financial services company with passionate customer service and innovative financial solutions. We are relentlessly focused on "Doing it Right" and being a trusted financial-services provider to our consumer, commercial, and corporate customers. For more information, visit www.ally.com. Ally is an equal opportunity employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to age, race, color, sex, religion, national origin, disability, sexual orientation, gender identity or expression, pregnancy status, marital status, military or veteran status, genetic disposition or any other reason protected by law. Where permitted by applicable law, must have received or be willing to receive the COVID-19 vaccine by date of hire to be considered, if not currently employed by Ally. We are committed to working with and providing reasonable accommodation to applicants with physical or mental disabilities. For accommodation requests, email us at work@ally.com. Ally will not discriminate against any qualified individual who is capable of performing the essential functions of the job with or without reasonable accommodation.