Job Description

The successful candidate will assist with the creation and implementation of the Cloud Security Strategy and related roadmaps and patterns by collaborating closely with the Lead Cloud Security Engineer and the Head of Cloud Security Engineering.

Outline of main duties and responsibilities

The main responsibilities of the role will be:

• Hands-on day-to-day management of security tooling both vendor tools (such as Mimecast Tessian and Netskope) and public cloud security tools (such as Azure Security Center, Conditional Access and MCAS).
• Implementing security tooling as well as BAU support of the tools.
• Oversee securing activities in cloud environments carried out by Infrastructure teams.
• Creating cloud security patterns based on available controls within the existing toolset.
• Assist in ensuring cloud security tooling is delivering the security value/reducing security risk.
• Reviewing cloud security risks as an SME for our Tech Risk and Control team.
• Support in making sure any Post Incident Review actions, Audit findings/similar are followed up and managed.
• Documenting implementations, via technical documentation and run books.
• Providing input and feedback on security policies, standards, and best practices.
• Work with GSOC to design tools that are best for them as customer
• Help to ensure cloud security standards are up to date and serve intended purpose.
• Continuously improve knowledge and skills in Cloud security.
• Work closely with the Head of Cloud Security Engineering and Lead Cloud Security Engineer to support the development and implementation of the Cloud Security Strategy and associated roadmaps & patterns.
• Support the Lead Cloud Security Engineer and Head of Cloud Security Engineering in their tasks and responsibilities.

Skills and experience required

• Minimum 5 years in Information & Cyber Security experience
• Relevant certifications such as CISSP, Sec+ and CEH or vendor certifications such as AZ-500, MS-500, Netskope Security Cloud Operation & Administration (NSCO&A) or Mimecast Email Security, Cloud Gateway Fundamentals
• Demonstratable experience with at least 1 of our security tooling (Tessian, Mimecast, Netskope)
• Knowledge and understanding of other Security tools in our estate (Qualys, Exabeam, Azure Security Centre)
• Understanding of cloud security across major cloud providers (i.e., Azure, AWS)
• Some experience in technology roles with a focus on Cloud security, CI/CD and Software Security.
• Some knowledge of industry standards with a focus on SOC II, ISO27001 and NIST.
• Understanding of relevant data legislation such GDPR, POPIA and HIPAA.
• Basic understanding of IAM and PAM tools such as SailPoint and CyberArk would be advantageous.
• Willingness to continuously improve knowledge and skills in Cloud Security and Security Engineering.
• Strong communication and teamwork skills.
• Excellent written and communication skills in English
• Ability to be able to work well under pressure
• Excellent problem-solving abilities and good at working under own initiative.

Reporting structure

The Cloud Security Engineer will report to the Group Head of Cloud Security Engineering

Apex Group