Cloud Security Specialist Job Description
About the Role
This role is part of a larger Cyber Defence Operations team, working closely with all cyber teams, as well as Cloud Enablement and Engineering (CEE) and Cloud Security Technology teams managing cloud environments.
Your Responsibilities
* You will act as the technical cloud security SME and escalation path, drawing on your expertise in areas such as incident response in AWS or Azure, cloud security control effectiveness, host analysis, network forensics, malware analysis, threat intelligence, and system administration.
* Use cybersecurity tools to gather information and investigate within the Group's public cloud environments.
* Identify best practices for monitoring, incident response, and managing cyber control hygiene in the cloud.
* Document detection, prevention, and isolation strategies for suspicious activity in the cloud.
* Assist the CDO team with incident response and remediation activities related to cloud workloads.
* Review security controls in affected cloud environments to identify gaps and contribute to post-incident reports.
* Support the CEE team with ongoing security posture reviews and improvements in cloud environments.
* Research emerging security technologies and trends, recommending implementations to strengthen security.
* Stay informed about cybersecurity threats and vulnerabilities, providing strategic and tactical risk mitigation recommendations.
Requirements
* Expertise in cloud security with a focus on AWS and Azure solutions and services.
* Experience in cybersecurity, particularly incident response and cloud security.
* Proven incident response experience is essential.
* Expertise in AWS and/or Azure cloud security controls.
* Bachelor's degree in information technology, cybersecurity, or a related field is preferred.
* Professional certifications such as CISSP, or equivalent, are highly desirable.
* Cloud Security certifications like AWS Certified Security Specialty are advantageous.
A bachelor's degree in information technology, cybersecurity, or a related field is preferred. Professional certifications such as CISSP, or equivalent, are highly desirable. Cloud Security certifications like AWS Certified Security Specialty are advantageous.