Cloud Security Consultant

We are looking for a Cloud Security Consultant for our client, a leading IT services company whose customers are top 200 Blue-Chip organisations.
The Role
Being responsible for the overall implementation of security cloud architecture
Assist in improving and developing new designs and security strategies cross all types of cloud-based applications (including infrastructure, platform, and software as a service.)
Responsible for the thorough documentations of implementations, via technical documentation and run-books
Responsible for input and feedback on security architectures
Apply understanding and experience with systems automation platforms and technologies
Partake in efforts that shape our client’s security policies and standards for use in cloud environments
Translate security and technical requirements into business requirements and communicate security risks to relevant stakeholders ranging from business leaders to consultants
Direct and influence multi-disciplinary teams in implementing and operating Cyber Security controls
Collaborate with application developers and database administrators to deliver creative solutions to difficult technology challenges and business requirements
Provide subject matter expertise on information security architecture and systems engineering to other IT and business teams
Execute security architectures for cloud cloud/hybrid systems
Responsible for automating security controls, data and processes to provide improved metrics and operational support
Employ cloud-based APIs when suitable to write network/system level tools for safeguarding cloud environments
Stay abreast of emerging security threats, vulnerabilities and controls
Spot and execute new security technologies and best practices into the company’s Cloud offerings.

Role Duties
•Support Solution Leader & Cloud Platform(GCP, Azure & AWS) Architects to build service offerings and create customer proposals for cloud deployments with a bias specifically round the security aspects of the deployments.
•Work with customer teams and projects to deliver engineered solutions that protect network boundaries, build hardened attack surfaces, secure sensitive data, and enable frictionless Cloud platform operations.
•Work with Cloud platform Architects to win and deliver Cloud services engagements
•Work hands-on with Cloud Platforms & customer network infrastructures, to enable active monitoring of systems for attacks and intrusions
•Support delivery of Cloud Platforms discovery & advisory workshops
•Help customer software engineers to understand how to proactively identify and fix security flaws and vulnerabilities
•Work within customer Cloud teams to design Cloud networking and deliver landing zones solutions
•Coordinate with your peers to execute complex workload migrations into Cloud Platform
•Support delivery of Cloud discovery & advisory workshops
•Provide customers and internal programmes with Cloud Security expertise
• Support Solution Leader & Cloud Architects to build service offerings and create customer proposals
•Work with Cloud Architects to win and deliver Cloud services engagements
•Capable of engaging with customers on how to connect Cloud IaaS & PaaS services in a performant and secure manner
•Working on complex Google Cloud projects, and carrying out large scale workload migrations
•Define and embed technical security principles and standards though code
•Develop, maintain and automate security tools for configuration management and secure software development
•Proactively identify vulnerabilities, provide solutions and drive remediation (ideally through automation runbooks)
•Build centralised security reporting dashboards that provide security assurance across our cloud platforms
•Be the ‘go to’ person for responding to security incidents across cloud platforms
•Work with our Managed Security Solutions Partner (MSSP) to develop innovative ways to monitor and respond to threats across multiple Cloud platforms
•Support the Cyber Security team with automating existing enterprise wide security tools and contribute to developing innovative integrations with existing tools to orchestrate and automate security processes.
Experience & Attributes
•3-5 years Cloud deployment experience from within the core Azure, AWS and GCP Cloud platforms with bias towards Security in the cloud platforms
•Multiple Customer Cloud Deployment experience
•Experience working on complex Cloud projects, and carrying out large scale workload migrations with a focus on security elements
•Experience of hands-on security designs for Cloud landing zones
•Knowledge of automation of security controls using common DevOps tools
•UK focused, across a variety of industry sectors
•AWS Certified Security Consultant
•Google Certified Security Consultant
•DevSecOps project experience/awareness
•Experience with automation & orchestration around security
•Experience with AWS/ GCP native security tools
•Demonstrable custom tool development and contribution to open source communities – optional
•Experience securing public facing web service
•Use of automation to solve complex problems at scale
•Solid understanding of addressing security in VMs, containers and serverless
•Be comfortable building security dashboards
•Strong familiarity with Linux and Windows operating systems and cloud provider ecosystems like Amazon AWS
•Practical knowledge of AWS foundation services related to compute, network, storage, content delivery, administration and security, deployment and management, automation technologies
•Robust micro services programming (AWS Lambda, Docker, etc.)
•Extensive experience architecting, designing, and programming applications and ample experience in high level programming languages such as C++, C#, Java, Python, Visual Basic
•Capability architecting highly available systems that utilize load balancing, horizontal scalability and high availability
•DevOps know-how building and deploying infrastructure with cloud deployment, build and test automation technologies like ansible, chef, puppet, docker, Jenkins, etc.
•Familiarity using AWS Cloud Services (EC2, DynamoDB, API Gateway, RDS, Lambda, CloudFront, CloudFormation, CloudWatch, Route 53, etc.)
•Understanding of complex enterprise environments and current technology areas like cloud and mobility
•Certification: CISSP or equivalent security-related industry certifications and AWS Associate or higher Certification
•Excellent analytical and troubleshooting skills: It is also essential that applicants have the necessary technical skills to constantly monitor systems to identify threats and vulnerability, execute security architecture, and ensure there are no external threats.