Cloud Perimeter Security Engineer

We are looking for

Cloud Perimeter Security Engineer

KSO/ZD/CPSE/04

Remote

  • Business critical application – pilot

  • content / it-professionals / jobs / icon / it-professionals-jobs-icon-project

    Responsibilities

    • Work alongside other specialists both within and outside of the Perimeter Security technology domain as a Cloud Network Security Specialist to replicate key security controls to secure the Public Cloud IaaS perimeter, to include: Network and Workload Segmentation/Micro-Segmentation, Cloud Access Security Broker (CASB), Web Application Firewall (WAF) and DDoS Protection, Outbound Web Filtering and Data Loss Prevention, Secure Access Service Edge (SASE), API Security, Cloud-to-Cloud
    • Have a detailed appreciation of common cloud services in IaaS, PaaS and SaaS contexts and cloud native security controls, understanding how they differ/compare across different Cloud Providers offerings. Understand and be familiar with multiple security vendor overlay technologies (pro’s/cons) and how they fit and function within a multi-cloud context.
    • Comfortable working with one or more configuration management orchestration tools (i.e. Hashicorp Terraform, CloudFormation, Ansible), understand the concept and elements of CI/CD pipelines (unit test, regression, canary) and be able to perform API level integration between dispirate systems i.e. SIEM tools
  • content / it-professionals / jobs / icon / it-professionals-jobs-icon-requirements

    Skills & Qualifications

    • 8 – 10 years of progressive Network Security experience comprising firewalls, intrusion detection, web application firewall, web proxy, DDoS Protection and Remote Access (IPSec, SSL/TLS) with at least 3 years in delivering enterprise grade solutions
    • Minimum of 2 – 3 years of practical experience with public cloud technologies (AWS/Azure/GCP/OCI), inclusive of cloud native security capabilities from one or more cloud service provider is a must
    • Intermediate network routing and switching knowledge and experience inclusive of multi-region multi-cloud access (Transit Gateway, VPC Peering, Direct Connect, NLB/ALB, NAT)
    • Full and comprehensive understanding of Identity and Access Management within atleast one Public Cloud Provider as well as strong conceptual understanding of Symmetric and Asymmetric key based cryptogrphy.
    • Knowledge of Cyber Security Frameworks i.e. Cyber Kill Chain, Mitre ATT&CK, NIST CSF as well as Financial Industry Regulatory Frameworks and Regulations specific to Public Cloud
  • content / it-professionals / jobs / icon / it-professionals-jobs-icon-requirements

    Nice to have

    • Scripting experience in Python and/or Golang
    • Working knowledge of Containers (i.e. Docker) and container orchestration platforms (Kubernetes, OpenShift)
    • Understanding of CI/CD pipeline tools and methodologies, Infrastructure-as-Code (Terraform, CloudFormation, Ansible)
  • content / it-professionals / jobs / icon / it-professionals-jobs-icon-offering

    Your benefits

    • Ongoing development of professional qualifications
    • Stable employment and professional work environment
    • Diversified range of implemented projects
    • Genuine influence on career management
    • Team that respects your opinion
    • Private healthcare and sport packages
    • Team-building activities and sports events