Security Specialist Senior

Position Overview At PNC, our people are our greatest differentiator and competitive advantage in the markets we serve. As a Security Specialist Senior within PNC's Cloud Security organization, you will be based in Pittsburgh, PA; Strongsville, OH; Dallas, TX; or Birmingham, AL. Job Description PNC’s Cloud Security Development team is looking for a candidate who has deep technical capabilities and direct implementation experience developing products and reporting for cloud security configuration management and compliance in both AWS and Azure with native and 3rd‑party tooling. This role is looking for a hands‑on keyboard individual who can both independently deliver and develop enhancements to our team’s product suite as well as provide coaching on security and development guidelines. You will work closely with partner security engineering and application teams to understand, implement, and develop security tooling related to cloud infrastructure security posture analysis and correction. You will also guide them to understand the build, deployment, and dependency requirements for their systems and advise on best practices for developing secure infrastructure. You will create security automation as the senior most member of a team to assess, monitor, and correct the provisioning and deployment of cloud infrastructure across the enterprise both at deployment (via IaC checks) and runtime. You will provide mentorship to a group of developers with regard to sustainable development, testing, and software practices. You will design and write clean, well‑architected code, tests, and automation to support the cloud compliance program. Requirements Development, DevOps, and Security experience with two or more public cloud technologies. Knowledge and understanding of IT architectures, distributed systems, and microservices. Experience with programming languages and writing automation (Python). Experience with serverless functions (Azure Function, AWS Lambda). Experience with relational databases (SQL). Knowledge and experience with containerization (Docker, Kubernetes, OpenShift). Knowledge and experience with CI/CD and DevOps tools (Git, Jenkins, Groovy, Make, Terraform). Knowledge and experience with Security / DevSecOps tools. Knowledge and experience with Cloud Security Posture Management tools (Azure Policy, AWS Config, Prisma Cloud, AWS SCP). Outstanding troubleshooting/problem‑solving abilities. Experience working with relevant cloud security frameworks/guidelines (CSA CCM, PCI Cloud Supplement, ISACA Cloud Computing Audit, CIS, NIST). Inquisitive and resourceful – not afraid to network within the organization to ask relevant questions. Excellent verbal and written communication skills – ability to explain complex concepts to a wide variety of individuals with varying technical skills. Interaction with project management team members and key stakeholders on application projects. Ability to handle sensitive and confidential information appropriately. Additional Responsibilities Provides technical evaluation and analysis in a specific security area. Supports activities, processes, and tools needed to improve overall security posture of the organization. Primary responsibilities do not include architect or engineering duties; provides subject matter expertise. Applies security concepts, reviews information, executes defined tasks, analyzes requirements, reviews logs, creates documentation. Performs investigation and data loss prevention, data manipulation, and coordination of activities. Performs actions to address or mitigate risks and vulnerabilities. Reviews and defines controls. Advises on more complex security procedures and products for clients, security administrators, and network operations. Participates in enforcement of control security risks and threats. Conducts security assessments and other information security routines consistently. Investigates and recommends corrective actions for data security related to established guidelines. Develops policies and procedures to standardize security functions and eliminate potential vulnerabilities and threats. Oversees that business needs are being met during development. Leads and mentors staff as discretion of management allows, aligning specific security area controls to the enterprise framework and devising control implementation strategy. Qualifications Successful candidates must demonstrate appropriate knowledge, skills, and abilities for the role. Preferred Skills Access Control (AC) Building Architecture Customer Solutions Disaster Recovery Planning Information Security Network Security Physical Security Risk Assessments Security Technologies Competencies Analytical Thinking Effective Communications Information Assurance Information Security Management Information Security Technologies IT Environment IT Standards, Procedures & Policies IT Systems Management Knowledge of Organization Problem Solving Software Security Assurance Work Experience Roles at this level typically require a university / college degree; higher level education such as a master’s degree, PhD, or certifications is desirable. Industry relevant experience is typically 8+ years. Specific certifications are often required. In lieu of a degree, a comparable combination of education, job‑specific certification(s), and experience (including military service) may be considered. Education Bachelor’s degree required. Certifications No required certification(s). Licenses No required license(s). Pay Transparency Base Salary: $119,000 – $185,150. Salaries may vary based on geographic location, market data and individual skills, experience, and education. This role is incentive eligible. Benefits Medical/prescription drug coverage with a Health Savings Account feature, dental and vision options; employee and spouse/child life insurance; short and long‑term disability protection; 401(k) with PNC match, pension and stock purchase plans; dependent care reimbursement account; backup child/elder care; adoption, surrogacy, and doula reimbursement; educational assistance; robust wellness program with financial incentives. Paid time off: maternity and/or parental leave; up to 11 paid holidays each year; 9 occasional absence days each year, unless required by law; 15 to 25 vacation days each year, depending on career level; years of service. Equal Employment Opportunity PNC provides equal employment opportunity to qualified persons regardless of race, color, sex, religion, national origin, age, sexual orientation, gender identity, disability, veteran status, or other protected categories. This position is subject to the requirements of Section 19 of the Federal Deposit Insurance Act (FDIA) and, for any registered role, the Secure and Fair Enforcement for Mortgage Licensing Act of 2008 (SAFE Act) and/or the Financial Industry Regulatory Authority (FINRA), which prohibit the hiring of individuals with certain criminal history. #J-18808-Ljbffr