Location(s):UK, Europe and Africa : UK : London
BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.
As an AWS Cloud Security Architect you will be working with our teams and customers to use your cybersecurity expertise and knowledge of AWS to implement secure cloud environments. You will be responsible for taking legal and regulatory requirements, combining these with industry best practice, and applying these to AWS workloads and tooling. This is a key role working closely with the customer and their cyber security specialists to enact a large:scale cloud migration journey, as well as working on new cloud native projects. We are looking for someone that is solution focused, who embeds security by design, and can ensure security is an enabler.
It's an amazing time to join our team to help shape our customer's exciting cloud adoption journey. Not only will your team be directly making a huge impact upon the systems you work on, you'll be doing it for an organisation who makes a huge impact to the security of the UK.
Core Duties
stylelist:style:type:disc:
:Lead on developing secure architectures, patterns and processes that support a wide range of AWS services.
:Working closely with solution architects and cyber security specialists; often translating concerns and requirements into a cohesive whole.
:Apply security requirements to AWS architectures and services.
:Ensure the cloud:based solutions meet legal and regulatory compliance.
:Perform threat modelling and risk assessments of solutions built on AWS.
:Develop the culture of security by design.
:Design and support with implementing security controls to validate compliance and prevent non:compliance.
:Work with the community of development teams to provide consultancy and guidance on secure cloud development as well as being an escalation point for security concerns.
:Seek opportunities to improve the security posture.
:Ensure security practices are accessible to all through documentation, reusable constructs and communicating these.
About you
You will have experience in many of the following:
stylelist:style:type:disc:
:You are regarded as a subject matter expert on AWS Cloud Security.
:Proven experience in AWS cloud security architecture and design in enterprise environments at scale.
:A deep understanding of general Cyber Security principles (e.g. encryption, secure network design, application attack vectors).
:Practical knowledge of industry standard security frameworks such as CIS AWS Foundations Benchmark, NIST, ISO 27001, and regulatory requirements (GDPR, PCI:DSS).
:A concrete understanding of core AWS principles (e.g. networking and IAM) with knowledge of security details across a range of AWS services.
:Hands:on experience with AWS:native security tools (e.g. IAM, KMS, GuardDuty, Macie, WAF).
:Proficiency in Infrastructure:as:Code (CloudFormation, Terraform).
:Excellent communication and stakeholder engagement skills.
:You are curious and have a desire to continuously learn, being up to date with the latest threats and best practices.
It would be great if you also had experience in some of these
stylelist:style:type:disc:
:Industry certifications such as AWS Certified Cloud Security Speciality or CISSP.
:Experience of securing container workloads.
:Mentoring junior engineers and nurturing their passion for engineering.
Security Clearance is required for this vacancy.If you are not currently Security Cleared, you will need to be eligible for this and willing to go through the process.
How we will support you
stylelist:style:type:disc:
:Work:life balance is important; you can work around core hours with flexible and part:time working