Cloud Security Architect
- Full-time
- Working Hours: 35 hours per week
- Salary: Competitive
- Department: Technology
Company Description
Here at esure, we’re no strangers to change. As one of the industry leaders in the insurance business, striving to become a world class digital insurer, we’re getting ready for more. It’s creating great new opportunities for innovative and talented industry professionals to join us at a pivotal point in our development.
It’s an opportunity you simply don’t want to miss. You can expect our investment in you to include a highly competitive package, career and development opportunities and flexible benefits built around you and your lifestyle.
Job Description
- Acting as one of the central points of contact within the business with regards to information security in the Cloud
- Contribute to strategic development of Cloud Security practices
- Collaborate with IT Architecture and Data Engineering platform squads to advocate security practices and where necessary review design documents
- Create and maintain Cloud Security reference architecture patterns and use cases examples, where applicable map to MITRE ATT&CK and MS Kubernetes threat matrix
- Continually review and extend Cloud Security Playbooks and preventative controls
- Collaborate with internal DevSecOps and DevOps squads and where necessary provide guidance of adopting security by design
- Support the development of security operations for monitoring, testing, and where necessary conduct Cloud implementation review audits
- Where appropriate support Incident Response team
Qualifications
Essential
- Continual passion to learn and inspire
- You will need to have a good background in Cloud Security Architecture and DevOps practices
- Cloud Platforms particularly AWS; Solid experience and background working with AWS services (EC2, EKS(K8), VPC, ELB, S3, RDS, WAF, Lambda, SNS, ELK, etc.)
- Thread modelling techniques and aware of common threats and implementation failings
- Experience of API integration and Security techniques
- Knowledge of AuthN/AuthZprotocols, such as OpenID Connect, OAuth, SAML and AD
- CISSP or equivalent qualification
Bonus points
- Kubernetes(K8) / Microservices
- Risk modelling concepts (e.g. STRIDE/DREAD)
- Threat matrix for Kubernetes and awareness of MITRE ATT&CK
- Knowledge of security automation tooling to facilitate CI/CD
- Application(L7) Security knowledge
- You may have experience with application security tooling (SAST, DAST)
- Ability to read and understand code/scripts (e.g. Python, Terraform)
- Awareness of vulnerability management and penetration testing tools
Professional growth
We are committed to continual learning, the individual would be supported to grow in missing disciplines:
- AWS Architect / AWS Security Specialist
- (ISC)² CCSP or (SANS) Cloud Security Architect SEC545
- Privacy by design CIPP/E or CIPT
Additional Information
Benefits
- 28 days holiday plus bank holidays
- 25% discount on esure & Sheila’s Wheels insurance (10% for immediate family) or a guarantee to beat any other insurer’s renewal quote on both home and car insurance
- 15% Discount on esure and Sheila’s Wheels Travel Insurance
- Management Bonus
- Festive Bonus
- BUPA - Private medical cover for eligible colleagues
- Flu Jabs and Eye Care - Free flu jabs every winter, free eye tests every two years and £50 towards VDU glasses
In light of the current Covid-19 pandemic, we want to emphasise to all applicants that the safety and wellbeing of our candidates and colleagues is esure Group’s number one priority. All interviews will be conducted remotely via a video conference platform to ensure that everyone involved is adhering to the social distancing guidance.