**4 DAYS ONSITE IN LONDON A WEEK, INSIDE IR35**
Key Responsibilities
* Conduct and ensure comprehensive security implementation for global cloud projects across various technology areas.
* Develop, codify, and engineer cloud security policies encompassing preventive, detective, reactive, and forensic controls; perform thorough testing of these policies.
* Engineer cloud security solutions for containerized environments and microservices (e.g., Kubernetes, Docker).
* Build and integrate security solutions for DevSecOps pipelines and collaborate with cross-functional teams to deploy them globally.
* Perform threat modeling for cloud-based workloads and develop corresponding countermeasures.
* Review and assess new third-party cloud and on-premises solutions to identify potential security risks and recommend mitigations.
* Design and implement security overlays across multi-cloud environments.
* Partner with stakeholders to develop and enforce cloud security policies, standards, and best practices.
* Monitor cloud security compliance throughout project lifecycles and ensure adherence to company standards.
* Guide the development of secure architecture requirements and ensure they are met through project planning and design phases.
* Maintain accurate reporting of security progress and communicate effectively with relevant stakeholders.
Preferred education/ qualifications:
* Bachelor's degree in computer science, Cybersecurity, or a related field. Master's degree preferred.
* 8+ years of experience in information security, with a focus on Technical Cyber Security domain
* Minimum of 5 years' experience in a cloud security environment.
* CISSP, CCSP, OSCP, SANS or equivalent desirable
* Certification in one or more cloud vendor offerings such as AWS, GCP, Azure, OCI.
* Specific Knowledge & Experience:
* 3+ years of hands-on cloud security experience, ideally in roles such as cloud security engineer or solutions architect with expertise in secure cloud implementations.
* Proficiency in core cloud security areas: governance, identity and access management, network and compute infrastructure security, data protection, workload security, and monitoring.
* Knowledge of cloud security frameworks (e.g., AWS Well-Architected, Google Cloud Security Foundations) and architectural standards (e.g., TOGAF).
* Familiarity with AI security assurance frameworks and implementing security measures for cloud-based AI services.
* Experience with security tools for container technology (e.g., Kubernetes, ECS, Docker) and cloud posture management (e.g., Prisma Cloud, Rapid7).
* Expertise in integrating security into CI/CD processes and proficiency with tools such as Git and GitHub.
* Hands-on experience with Infrastructure as Code (IaC) and Policy as Code (PaC) technologies, including Terraform and CloudFormation.
* Demonstrated skills in cloud threat modeling and architectural assessment using tools like IriusRisk.
* Strong knowledge of compliance benchmarks (e.g., CIS, GDPR, PCI-DSS, ISO standards) and industry cloud security standards (e.g., NIST, CSA).
* Proficiency in coding and workload languages (e.g., Python, Java, .NET) and practical understanding of various cloud models (IaaS, PaaS, SaaS).
* Excellent documentation, presentation, and analytical skills with the ability to convey technical concepts to stakeholders.
LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds.
Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.
