Responsibilities

The responsibilities of the Information Security Cloud Engineers are:

• the support and maintenance of Cloud Security Tooling and Platforms including:
  • implementing policy changes
  • performing daily, weekly and monthly checks
  • monitoring the availability of systems and responding to alerts
  • monitor the capacity of systems & supporting infrastructure and project future capacity
  • identifying and resolving issues
  • preparing status reviews and reports
  • managing support cases to ensure issues are recorded, tracked, resolved, and follow-ups are done in a timely manner
• to maintain a good working knowledge of current infrastructure and future trends
• to deliver excellent customer service
• to work with the third-party suppliers of the Security Products
• to maximise security value from existing investments
• to assist the wider Information Security Engineering team with the development of the security tooling
• to work collaboratively with wider Information Security team.  This would include working with: The Incident Response team, assisting with incidents; and with the Security Consultants to provide additional technical knowledge
• to take part in post incident reviews and propose engineering resolution to improve results in any future recurrence
• to recognise that telemetry for security products will increasingly be curated in the cloud and be prepared to develop API endpoints and connections to collect and collate this knowledge
• to participate in the Information Security On-Call rota.

Essential Experience & Skills

• Proven experience of supporting IT/Security Infrastructure
• Strong technical background
• Hands of experience with a least 1 of the main cloud vendors (Amazon Web Services, Azure, Google Cloud Platform)
• Experience of Cloud Security Tools (e.g. AWS Security Hub, Azure Security Centre)
• The ability to pick up and learn new technology approaches and make rapid decisions on the best way to use these technology advancements for the betterment of the overall security posture.
• Excellent communication skills as the ability to communicate effectively, constructively, confidently and professionally is key to the success in the role as is the ability to work with IT and Information Security teams and the wider business.
• An excellent knowledge of Information Security principles and an understanding of the Cyber Kill Chain, MITRE ATT&CK and other information security defence and intelligence frameworks.
• Keen attention to detail and excellent analytical skills.
• Ability to actively manage workloads to meet business and department requirements.