Senior Cloud Security Engineer

Description

The Senior Security Cloud Engineer forms part of the Security Engineering team and is primarily accountable for driving the operational capabilities of the Cloud Security program ensuring security is baked into all the business Cloud solutions.  Working closely with Cloud Security Architecture and Cloud Risk Consultancy this is a proactive role and represents an ability to have an impact on all business areas and is instrumental in building a world-class security estate.

Responsibilities

The Senior Information Security Cloud Engineer will:

• Manage technical escalations to a successful resolution.
• Drive the security awareness programs to ensure engineers stay informed of top cloud security risks and best practices.
• Create security policy, standards, procedures, and guidelines for Engineers to consume.
• Triage security issues and provide recommended fixes.
• To maintain an excellent knowledge of Cloud infrastructure and future trends.
• Raise awareness of security policies and develop corresponding procedures.
• Design, produce and continually improve Management reporting.
• Evaluate new tools, processes and frameworks, drive adoption of the best ones.
• To work with the third-party suppliers of the Security Products.
• Identify and lead maximising security value from existing investments.
• Work collaboratively with the wider Information Security team.  This would include working with: The Incident Response team, assisting with incidents and enhancing Incident Response tooling; Security Architecture to ensure that any existing constraints are overcome within forward looking plans; and with the Security Risk Consultants to provide additional technical knowledge.
• Take a leading role in post incident reviews and propose engineering resolutions to improve results in any future recurrence.
• To develop API endpoints and connections to collect and collate telemetry from security products.
• Participate in the Information Security On-Call rota.
• Triage security issues and provide recommended fixes.
• Active participant in the Change Approval processes.

Essential Experience & Skills

• Proven experience of supporting IT/Security Infrastructure
• You will be comfortable reviewing and discussing code with other Engineers.
• Proven cloud security experience with a least 1 of the main cloud vendors (Amazon Web Services, Azure, Google Cloud Platform)A strong technical background with knowledge of managing or supporting Cloud Security Tools e.g. AWS Security Hub, Azure Security Centre
• Experience with security functions such as understanding cloud architecture and performing design reviews, threat modelling, code and configuration reviews, and incident response.
• Experience with SIEM and data analysis tools.
• You enjoy continuously identifying important work and can engage other teams without explicit direction.
• Excellent communication skills as the ability to communicate effectively, constructively, confidently, and professionally is key to the success in the role as is the ability to work with IT and Information Security teams and the wider business.
• The ability to pick up and learn new technology approaches and make rapid decisions on the best way to use these technology advancements for the betterment of the overall security posture.
• An excellent knowledge of Information Security principles and an understanding of the Cyber Kill Chain, MITRE ATT&CK and other information security defence and intelligence frameworks.
• Keen attention to detail and excellent analytical skills.
• Ability to actively manage workloads to meet business and department requirements.

Desirable Skills

• One or more technical Information Security Certifications such as:
  • CISSP
  • CompTIA: Security+
  • GIAC Certification: GCED
• One or more cloud certifications such as:
  • AWS Certified Solutions Architect – Associate
  • Microsoft Certified: Azure Solutions Architect Expert
  • Certified Cloud Security Professional (CCSP)
• Degree in an Information Security / Computing discipline.
• Experience with Security Tools such as:
  • Internet Filtering
  • Email Filtering
  • EndPoint Detection and Response
  • Host Based Firewalling, HIDS/HIPS
  • Antimalware
• Hungry to learn all things new and willing to work smart to get the job done.
• Experience with ITIL
• Experience working within in an Agile framework
• A working knowledge of financial services and the typical business processes involved together with the threat actors and their relevant tactics, techniques and procedures would be of significant advantage.

About Admiral

We're Wales’ only FTSE 100 company. We have forward-thinking approaches and provide endless opportunities to test, learn and grow. There's a reason we've been named a Best Place to Work: our progressive culture, core values, and commitment to diversity and inclusion have created a working environment where people share ideas, aren’t afraid to speak up and change things, and above all, feel valued.

Admiral has grown from being a small start-up into a multi-national organisation. The company is constantly investigating new products, services and markets and is now present in eight countries with a diverse product portfolio.

Our success goes hand-in-hand with having a strong culture where we put our people and customers first. Our philosophy is simple yet effective: people who like what they do, do it better, and this, in turn, means that our customers receive the level of service and products that they deserve. Our culture is honest, open and wholeheartedly focused on four key areas:

Communication, Equality, Reward & Recognition, and Fun.

Salary, Benefits and Work-Life Balance

We do not have a set salary for this position, as it will be dependent on the successful candidate’s experience. We are happy to see CVs from all candidates who meet the requirements and will be happy to discuss the remuneration package.

At Admiral, we are proud to be a diverse business where we put our people and customers first. We have great benefits to ensure employees have a great work-life balance; it's one of the reasons we're voted no. 1 in the 2019 Sunday Times Best Big Companies to Work For in the UK. We want you to have an element of freedom to define a working lifestyle that supports this, so accommodate flexible hours wherever possible.

You can also view some of our other key benefits here; https://admiraljobs.co.uk/employee-benefits/.

If you think this role is for you and would like to be considered for this opportunity, please click “apply now” to complete an online application form.

#LI-LP1