Cloud Security Senior Consultant
technologies-expected :
- Python
- Bash
- PowerShell
- SQL
about-project :
- The role of Cloud Security Senior Consultant reports into the Global Head of Cloud Security, supporting the execution of capabilities aligned to their cloud security vision to support strategic business objectives at an enterprise level, enabling HSBC to make robust strategic and operational decisions in relation to business and cyber security requirements. The role is responsible for continually assessing the posture and maturity of cloud security engineering, designing, and championing security solutions and opportunities.
responsibilities :
- Be an owner of security outcomes (in relation to applicable cloud platform) as per management direction and HSBC Policy.
- Identify, develop, and implement new preventive, detective, and corrective controls in one or more cloud platforms (Microsoft Azure, Amazon Web Services, Google Cloud Platform and Alibaba Cloud).
- Review/ challenge/ escalate requests from Global Businesses and Functions for exemptions/ exceptions from mandatory security requirements, driving consistent policy, process and management across all Cloud platforms and Global Businesses and Functions.
- Actively participate in Global Businesses and Functions Architecture/ Design/ Cloud Deployment Pattern reviews and provide feedback to ensure cloud services meet mandatory security requirements and operate in a secure way.
- Have oversight of Cloud Security Assessment security reviews, through manual and automated processes.
- Develop, evolve, and maintain HSBC tools, API Integrations, and an in-house cloud security knowledge base (Cloud Build Security Hub).
- Collaboratively work with vendors, client staff and contractors to implement and integrate vendor-provided Cloud Security solutions as required. Actively support security vendor/ tooling selection for HSBC and business stakeholders to understand and drive the product or service’s direction.
- Drive continuous improvement of cloud security and automate processes to minimize variation and ensure predictable high-quality code and data.
- Proactively research emerging threats and vulnerabilities to aid in the identification of cloud threats.
requirements-expected :
- Expert level knowledge and hands on experience in any one or more Cloud platforms including Microsoft Azure, Amazon Web Services, Google Cloud Platform and Alibaba Cloud.
- Extensive working knowledge of software development tools and technologies, e. g. , Python, Bash, PowerShell, SQL, and data formats such as XML, JSON, CSV.
- Experience in system/infrastructure implementation and operations.
- Customer/stakeholder focus. Ability to build strong relationships with Application teams, cross functional IT, and global/local IT teams.
- Self-motivation and a high sense of urgency and personal integrity.
- Excellent written and spoken communication skills with an ability to communicate with impact, ensuring complex information is articulated in a meaningful way to wide and varied audiences and produce clear and concise reports/control documentation for targeted audiences across internal and external stakeholders.
- Experience of working with Kubernetes or other container orchestration experience in building and deploying applications on the Cloud, using CI/CD frameworks and Infrastructure automation, such as: Jenkins, Terraform, Ansible, GitHub and Nexus.
- Professional Security related qualifications.
- Desirable to have one or more industry-recognised cybersecurity-related certifications including CISSP, CRISC, CISM or Cloud Security Certifications.
offered :
- Competitive salary
- Annual performance-based bonus
- Additional bonuses for recognition awards
- Multisport card
- Private medical care
- Life insurance
- One-time reimbursement of home office set-up (up to 800 PLN)
- Corporate parties & events
- CSR initiatives
- Nursery discounts
- Financial support with trainings and education
- Social fund
- Flexible working hours
- Free parking (Cracow office)
benefits :
- sharing the costs of sports activities
- private medical care
- sharing the costs of professional training & courses
- life insurance
- remote work opportunities
- flexible working time
- integration events
- corporate sports team
- doctor’s duty hours in the office
- retirement pension plan
- corporate library
- no dress code
- coffee / tea
- parking space for employees
- leisure zone
- extra social benefits
- employee referral program
- opportunity to obtain permits and licenses
- charity initiatives
- family picnics
- extra leave
- In-office gym
Bądź pierwszy, który ubiega się o to miejsce pracy!
-
Dlaczego szukać pracy na HitPraca.pl?
Subskrybuj oferty pracy
Codziennie nowe oferty pracy Możesz wybierać z bardzo szerokiej gamy ofert pracy - naszym celem jest posiadanie jak najszerszej oferty pracy Otrzymuj nowe oferty e-mailem Bądź pierwszym, który odpowie na nowe oferty pracy Wszystkie oferty pracy w jednym miejscu (od pracodawców, agencji pośrednictwa pracy i innych portali) Wszystkie usługi dla kandydatów do pracy są bezpłatne Pomożemy Ci znaleźć nową pracę