As a Cloud Security Engineer within the Run and Operate chapter at Tesco Mobile, you’ll play a key role in securing and optimising our cloud platforms—primarily AWS and Azure. You’ll help design, manage, and deploy secure solutions across various environments, maintaining a proactive programme of work to address evolving security priorities. Your responsibilities will include identifying threats and risks, implementing effective mitigations, and validating infrastructure changes. You’ll also collaborate closely with the Cyber Security Team and your squad to embed robust security checks into CI/CD pipelines, strengthening our overall cloud security posture.
As a Cloud Security Engineer, you’ll work within our DevSecOps squad to:
1. Lead and implement cloud security improvements across AWS and Azure environments.
2. Use tools like AWS Security Hub and Azure Security Center to monitor and enhance our security posture.
3. Integrate security controls into CI/CD pipelines and development workflows.
4. Collaborate with the Cyber Security Team and application developers to embed security processes.
5. Validate infrastructure changes to ensure compliance with security standards.
6. Act as an expert on cloud and infrastructure security.
Must-have experience:
1. Strong hands-on experience with AWS cloud security.
2. Proven track record of delivering cloud and SaaS security improvement projects.
3. Familiarity with CI/CD pipelines and integrating security tooling (e.g., SAST).
4. Experience with infrastructure validation, threat identification, and risk mitigation.
Nice to have:
1. GitHub and GitHub Actions experience.
2. Hands-on experience with Azure cloud security.
3. Familiarity with Splunk, IaC tools, and automation using AWS CLI, Python, or PowerShell.
4. Exposure to containerisation (Docker, Kubernetes) and DevOps practices.
#J-18808-Ljbffr