Senior Cloud Cybersecurity Engineer

Responsibilities

• Develop and implement security policies, procedures, and standards to safeguard the organisation's systems, AWS cloud infrastructure, and data aligned with our Information Security Strategy and Roadmap.
• Key member of the response team in the event of information security incidents and breaches.
• Conduct regular security assessments (e.g. threat modelling, architecture reviews etc.) and vulnerability scans to identify and address potential risks and weaknesses and to ensure compliance with relevant industry standards and regulations.
• Design, configure and maintain security solutions like XDR, CNAPP, SIEM, AWS Security Features, Identity and Access Management, MDM, SASE etc. to protect against threats like malware, ransomware, and unauthorised access as well as to monitor and analyse security logs and alerts to detect security risks and respond to security incidents in a timely manner.
• Collaborate with our Cloud Platform, Engineering Group, and People teams on security controls and implementing best practices across Infrastructure Operations, Application Development, and People provisioning/deprovisioning.
• Collaborate, coach, and assist teams in solving security issues in a manner that complies with business requirements and to ensure cybersecurity best practices are integrated across the organisation and are aligned to relevant information security standards and regulations.
• Stay abreast of emerging threats, vulnerabilities and security trends and advancements to continually enhance the organisation's security posture.
• Participate in security audits and compliance assessments to ensure adherence to regulatory requirements and industry standards.
• Able to work after hours and be on call periodically for large/critical system configuration and migration work.
• Will have made a point of automating as much of your job as possible through scripting and tools, so as to focus on the truly important tasks.

Requirements

• A bachelor's degree in Computer Science, Cyber Security, Information Technology, or related field is desirable, but not mandatory.
• A minimum of 5 years of experience in cloud-centric information security roles (ideally with AWS), with a focus on security operations, vulnerability management, or incident response.
• Advanced understanding of security principles, protocols, cryptography, and cloud security concepts and technologies.
• Advanced understanding of secure software architecture practices and DevSecOps practices.
• Advanced understanding of Identity Management and Access Control.
• Proficiency in setting up and administering security tools and technologies such as firewalls, WAFs, intrusion detection/prevention systems, endpoint security solutions, and SIEM/SOAR platforms.
• Advanced understanding of security frameworks and methodologies — OWASP Top 10, MITRE ATT&CK, Cyber Kill Chain, etc.
• Proficient in scripting with Bash and/or Python to automate SOC processes.
• Familiarity with security frameworks and standards such as NIST, ISO 27001, SOC 2 or similar.
• Industry certifications such as CISSP, CISM, or GIAC.
• Experienced in fast-paced, cross-functional teams, utilising agile methodologies with strong communication skills.