Our client is looking for a permanent DevSecOps Engineer to lead their security implementation and transformation programmes. The role will involve the creation of secure cloud design, configuration and operations standards, policies and procedures. This is a front line, hands-on, operationally focused position, responsible for designing and securing our cloud estate. The right candidate will have hands on experience with technologies which scale in the cloud with a proven record of defining and implementing complex cloud security strategies.
The role will involve:
Design secure cloud infrastructures and delivery systems with objectives like speed, scalability, robustness, zero-trust, automation and supportability at the core.
Ensure that our Cloud estate (Azure, AWS, SalesForce, etc) is configured securely according to industry standards, as well as our own.
Provide expert Cloud security advice to DevOPS and Software Engineering colleagues.
Monitor our Cloud estate, react to, investigate and respond to all real or perceived information security and cyber related events, issues, incidents, threat and attacks. - co-working with Security Analysts.
Work with existing teams and enterprise systems (e.g. Service Desk) and procedures to quickly assess and process the most appropriate next action when faced with various pieces of data and information concerning information security and risk.
Determine the severity of alerts and security vulnerabilities, assess potential impacts, recommend next steps, follow through with risk treatment and mitigation.
Escalate issues, appropriately, to various teams and levels of authority inside the organisation.
Act as the first Point of Contact (POC) for all Cloud security events, anomalies, incidents and investigations
Perform duties according to agreed SLA/OLA's.You will have advanced understanding and demonstrable hands on experience with Cloud environments, systems and tools (e.g. Terraform) and with fundamental Internet and security technologies (routing & switching, DNS, FW, IDS, Anomaly detection), in an enterprise or service provider environment and proven experience securing and monitoring Cloud (IaaS/PaaS/SaaS/hybrid, containers, serverless, etc) environments (applications, infrastructure, operations, processes).
Other experience required:
Scripting and automation: Advanced ability to read and understand code, understand logs and alerts, to use specialist tools (Cloud native and 3rd party), as well as programming / scripting languages (Python, Shell, PowerShell, AWS Lambda, Azure Functions, PowerApps), to automate tasks, to enable security at speed and scale.
Good expertise in taking policy statements and translating them into actual, implementable, security controls and templates that can be monitored, audited and constantly improved.
Good understanding of common information security management standards, frameworks, and laws / regulations: e.g. CIS Top20, ISO/IEC 27001, NIST 800-53, BSIMM, etc; GDPR, etc.
Experience of open source security tools and how they could be used in an enterpriseThis role will allow 1 or 2 days a week working remotely with the rest being office based. The role is fully remote working while the COVID 19 measures are in place. It's a great role with great career and professional development opportunities. Please apply with your word CV for more information.
Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position.
No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010.
Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy