KnownFour Ltd
This job has been posted for more than 30 working days and has expired.

Cloud Security (DevSecOps) Engineer

Cloud Security (DevSecOps) Engineer - Contract (London)

Our client is a tech company who work with some of the world's biggest ecommerce players.

They work with well-known global retailers and major brands.

The company was recently acquired by a Fortune 100 company.

This brings exciting and ambitious plans all centred around their tech.

Our client has been growing at 40% year on year over the last 5 years and continues to grow at a rapid rate.

Its a very exciting time to be joining this company.

Your Role:

, Applying Security-as-Code principles across the board to improve security of the clients product suite & provide training, mentoring, and best practices to the teams

, Leading the development of an automated framework for Security Tool deployment and development, leveraging various scripting languages and open source solutions

, Architecting and designing API Security, Container Security, AWS Cloud Security

, Developing the automation of security and compliance capabilities in support of DevOps processes

, Implementing security features and monitoring tools, performing periodic security assessments

, Responding swiftly to new and emerging security threats and vulnerabilities, investigating suspected attacks and help manage security incidents, including providing post-mortem analysis, identify causes, develop solutions and preventive measures

, Being an integral part of the Information security incident process

, Managing the development, refresh and implementation of security policies, standards, guidelines and procedures

, Building relationships with all staff to promote “Security by Design” throughout the business


As a trusted technical authority, you'll become a go-to person for all things Security engineering, who can demonstrate and apply the following;

, Solid understanding of the following AWS Suites of service:

‘Security, Identity & Compliance'

‘Management Tools'

‘Compute' & ‘Storage'

‘Networking & Content Delivery'

, CI/CD - Deployment pipeline experience (Jenkins, Ansible, Terraform)

, Strong Technical knowledge of secure engineering principles, privacy (DPA / GDPR) and compliance law and standards (OWASP\ISO\ISF\NIST)

, Experience supporting, monitoring and alerting on high availability systems and scalable architectures from a security perspective

, Working knowledge of Vulnerability/compliance, Patch management, Anti-malware, Access Control Management toolsets

, Demonstrable understanding of DLP/IDS/IPS technologies, ability to construct custom signatures and investigate intercepted traffic/logs

, Deep knowledge of non-security focused AWS products and tools.

Please send your CV to apply for this position