Job Description:
• Management of existing cloud security native tools
• Ownership of service requests related to cloud security tools
• Incident escalation point for security analysts
• Continuous improvement along with wider team as part of Centre of Excellence
• Responsible for providing technical support in the creation and delivery of technology solutions designed to meet customers’ business needs and, consequently, for understanding customers’ businesses.
• As trusted advisor create and maintain effective customer relationships so as to ensure customer satisfaction.
• Maintain knowledge of leading-edge technologies and industry/market domain knowledge.
• Frequently contributes to the development of new ideas/methods.
• Usually works on complex problems or projects where analysis of situations or data requires an in-depth evaluation of multiple factors.
• Regularly exercises significant independent judgment within broadly defined policies and practices to determine best method for accomplishing work and achieving objectives.
• Provides expertise to functional project teams and may participate in cross functional initiatives.
Experience required:
We are seeking candidates with a minimum of 3 years' experience with either AWS or Azure cloud infrastructure, a demonstrable experience in modern DevSecOps/CloudOps practices, experience with cloud infrastructure monitoring, experience of working within controlled regulatory frameworks, and an 'automate everything' mindset.
Technical Skills:
1. Proficient in AWS and Azure security services, features, and management tools.
2. Understanding of each platform's native security controls and best practices.
3. Experience with security tools specific to AWS and Azure, such as AWS Security Hub, Microsoft Defender for Cloud, and third-party tools like Palo Alto Networks, Tenable, etc. Experience and knowledge of CNAPP solutions.
4. Knowledge of automated security scanning tools, intrusion detection systems, and firewalls.
5. Experience of DevSecOps tools and processes, AKS and EKS and container security.
6. Familiarity with CI/CD pipelines and related tools (e.g., GitHub, Azure DevOps).
7. Understanding of infrastructure as code (IaC) using tools like Terraform and Ansible.
8. Proficient in scripting languages such as Python, PowerShell, or Bash to automate security tasks and responses.
9. Ability to develop and maintain automation scripts that integrate security into the CI/CD process.
10. Understanding of Networking and Encryption in Cloud environments
11. Strong understanding of network configurations, security groups, and Virtual Private Cloud (VPC) setups.
12. Knowledge of encryption protocols and key management practices specific to cloud environments.
13. Experience of working with JIRA, and Devops.
Technical skills or Experience in some of the following:
14. AWS IAM access analyser
15. AWS Inspector
16. AWS WAF
17. AWS Config
18. AWS Guard duty
19. AWS Cloud Trail
20. AWS Cloud watch
21. AWS KMS
22. AWS Cert manager (ACM)
23. Azure PIM / MFA
24. Azure AD (Entra ID)
25. Microsoft Defender for Cloud
26. Azure WAF
27. Azure policy
28. Azure Key Vault
29. Jira
30. Confluence
31. Cloud Formation
32. Infrastructure As Code
33. Terraform
34. Dark Trace
35. Palo Alto NGFW and Panaroma
36. Tenable CNAPP
Additional Information:
• Professional Accreditations/Certifications are preferred
• This is a mobile role, travel compulsory
• The candidate must hold a current driving license
• Background Checking is needed with full financial check
• Needs to be eligible for Security Clearance