Cloud Security Architect/Consultant - DevSecOps - AWS - GCP - AZURE - SecDevOps

---

Job description

Cloud Security Architect - DevSecOps - AWS - GCP - AZURE - SecDevOps - Cloud Security Consultant

Large independent security services company based in the UK, are currently looking to bring in an experienced Cloud Security Consultant/Architect responsible for architecting new cloud environments to collaborating with engineering and development teams to evaluate and identify optimal cloud solutions.

They analyse security risk within each design as appropriate to the scope and ensure that all interested stakeholders are informed or consulted where necessary.

Knowledge of the following technologies:

Cloud platforms such as AWS, GCP and Azure
Cloud provider native security controls such as vulnerability management, certificate management, DLP, etc.
3rd party vendor controls such as cloud access security broker, cloud workload protection, etc.
Cloud based identity and access controls
Programming languages such as Python
OS level virtualisation such as Docker
Container orchestration systems such as Kubernetes, Container as a Service (CaaS) or managed alternatives
Infrastructure as code software tools such as Terraform, Chef, Puppet, Ansible, etc.
API development such as RESTful
Source code collaboration and management such as GitHub
Serverless function security and microservice architectures
Risk management, compliance, and assurance such as Puppet or Chef InSpec

Experience desired:

Automating application deployment, scaling and management
Analysing development life cycles and making recommendations where security can become an integral part
Determining risk tolerance and conducting risk/benefit analysis
Introducing automation technologies helping to adopt more agile development practices
Using software assurance maturity models such as OWASP SAMM v2
Infrastructure as code (IaC) as a key attribute of enabling best practices in DevOps
Cybersecurity frameworks such as NIST, ISO 27002, IASME, etc.
Project management practises such as Agile and backlog management tools such as Jira

Certifications desired:

(ISC)² Certified Cloud Security Professional (CCSP)
Cloud-Institute Certified Cloud Professional (CCP)
Practical DevSecOps Certified DevSecOps Professional (CDP)
Microsoft DevOps Engineer Expert (AZ-400)
Google Professional Cloud Security Engineer, Cloud Architect and Cloud DevOps Engineer
AWS Certified Security - Specialty, Solutions Architect - Professional and DevOps Engineer - Professional

Cloud Security Consultant - DevSecOps - AWS - GCP - AZURE - SecDevOps - Cloud Security Architect