Home Jobs Cloud Network Security Consultant

Cloud Network Security Consultant

42
0

Role: Cloud Network Security-Consultant

Location: Swindon,UK

Type: Permanent

Job Description:

Key Accountabilities
* Provide consultation and guidance to our Digital Delivery teams to secure new and existing workloads on the Azure platform
* Measure and track the security posture of our Azure deployed products, infrastructure, and platform
* Increase visibility of security threats, and enable our colleagues to identify and manage risks across our Cloud platform
* Map Policy to the definition of security requirements, and coach our Digital function on how to secure product implementations to fulfil these requirements.
* Provide secure design patterns, and socialise and demo patterns within Digital Delivery
* Evangelise Cloud security and strive to embed an improved security culture and responsibility into the DevOps practices in the organization
* Optimise and enhance security processes and operating procedures
* Enable Security Operations and Assurance requirements through Azure event alerting, and controls testing
* Threat modelling and architecture reviews
* Help improve KPIs and metrics

ESSENTIAL:
* Hands on experience of Azure, including serverless architecture (Azure Functions, Platform as a Service components)
* Product knowledge of the cloud-native security features of Azure to protect resources
* Experience working within an agile environment, and with teams delivering Continuous Integration/Continuous Delivery (CI/CD)
* Familiar with Infrastructure as Code and Compliance as Code
* Scripting/Programming and config formats (eg Powershell, Azure CLI, YAML)
* Ability to evangelise and explain security and controls to to manage risk, eg authentication, role-based access, encryption

DESIRABLE
* Understanding of FCA and PCI data security control requirements
* Application Security – can code and understands development methodologies and frameworks, familiar with common web and API risks and threats
* Identity experience of Azure AD, Identity Governance, usage of service principals, and modern web-based methods of authentication
* Cryptography experience implementing mechanisms for encryption at-rest and in-transit, and procedures for key management
* Detection – Practical Knowledge of SIEM/SOC, including Azure Sentinel
* Technical Assurance – Hands on experience of technical security vulnerability assessments and penetration testing using Burp Suite, Kali Linux or similar
* AWS cloud platform skills and knowledge, eg AWS Config configuration, Security Hub
* Security related certifications, eg CISSP, Azure Security Engineer (AZ-500)

Company Description

Previous articleCivil Engineer/Technician
Next articleERP Consultant, Cheltenham

LEAVE A REPLY

Please enter your comment!
Please enter your name here