Job Description

*** AZURE/AWS SECURITY CONSULTANT REQUIRED IN WELWYN GARDEN CITY****

DURATION 6 MONTHS

DAY RATE -COMPETITIVE VIA UMBRELLA

LOCATION- WELWYN GARDEN CITY

My client is a blue chip FMCG and retail brand that serve millions of customers every week from all over the globe. With over 6,000 stores internationally my client is a well-known household name that offer several exciting opportunities.

About the role

Our client requires a seasoned Azure security consultant/architect for their Security Architecture team to perform risk assessments and give security advises for the wider technology and infrastructure teams. We adopt a wide range of technologies across its estate and constantly transforms it network, systems, and services.

So\xe2\x80\xa6why our client?

There is a huge amount of technology needed to serve our customers well, and the diversity and scale of our projects means wildly different security challenges. Some current major initiatives include

• We are building our next-generation on-prem private cloud hyper converged infrastructure platform.

• We are heavily invested in revamping and increasing the network security tooling and monitoring for our on-prem, private and public cloud.

• We\'re moving away from industry norm of off-the-shelf spaghetti code to more self-managed platforms of future.

• We\'re the original big data company in the UK, and we\'re heavily data driven

• We\'re investing heavily in AI/ML in areas such as computer vision and natural language processing to better support our customer channels

• We\'ve a large multi-cloud service-mesh initiative underway. Dead simple if you\'re just doing it on a single k8s cluster, but much harder at our scale and with polyglot tech stacks

• We\'ve a great network and systems (infrastructure) engineering team developing tooling to improve security at scale, and who you will be working closely with

Our client has a rich network and infrastructure technology stack for network monitoring and discovery, security tooling, application aware firewalling and intrusion detection, cloud-based content delivery network (CDN), cloud access security broker (CASB) and so on. We have fully embraced Devops and agile methods to develop enterprise APIs, services, and cloud capabilities. Our 100+ delivery teams have loads of Docker, Kubernetes and microservices galore across Azure and AWS, so our security approach must work with elastic, here today, gone tomorrow infrastructure. Our security approaches should be event-driven, real-time and effective. Weekly scans are so 2010.

You will be responsible for

You will be responsible for augmenting the Security Architecture team with speciality skills and help scale our security presence across the wider technology and infrastructure teams.

• You will be conducting architecture reviews, infrastructure, and network security risk assessments for various projects across the estate.

• As necessitated, you will interact with the Azure Administration, development teams, security partners and respective product managers during the review process.

• You will review, report, and provide guidance on configuration and the best security setup for each application deployment.

• As necessitated, you will get involved with the Development team to provide appropriate resolutions to the gaps identified in their cloud infrastructure and workloads.

• You must have extensive experience deploying security features for Azure applications which include infrastructure, integration, and solutions knowledge.

• You must have core knowledge in API management, encryption, O365, Azure Active Directory, AKS management, Azure Storage and Eventing.

• You must also have a deep understanding of the Azure IaC infrastructure, Azure monitoring infrastructure and Microsoft Defender.

• You will understand the threat landscape and the risk appetite of the business. Take a risk-based approach on security.

• You will also be responsible for reviewing and configuring Azure Hub and Spoke infra setup, Azure DevOps, Azure Firewall and NSG\'s.

• The development team will look up to you for all Azure security matters but there\'s a whole security organisation to back you up, so you\'re not alone!

• Understand and drive adoption of Azure security standards and capabilities into the teams you work with.

• Facilitate risk management but also challenge decisions made in the process.

• Excellent interpersonal, facilitation, and leadership skills along with effective communication (both written and verbal) skills.

You will need To excel in this position, to have the following:

• 12-15 years of work experience with a bachelor\'s degree or at least 10 years of work experience with a master\'s degree in relevant areas. You have worked in similar sectors.

• Solid experience with enterprise IT architecture and various deployment methods.

• Solid experience with cloud security standards/frameworks from CIS, NIST, ISO, etc.

• Solid experience with Azure cloud architectures with exposure to managed Kubernetes, popular PaaS, and SaaS services.

• Solid understanding of network segregation, WAF, App Gateways, Proxies, Firewalls.

• Good understanding of doing workload security and dev(sec)ops, the shift-left culture.

• Good understanding of security & privacy principles, secure standards, and RFCs.

• Have Certifications such as AZ-500, AZ-303/304, Microsoft Certified Cyber Security Architect, or similar.

Candidates will ideally show evidence of the above in their CV to be considered.

Please be advised if you haven\'t heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly.

Pontoon is an employment consultancy and operates as an equal opportunity\'s employer.

Please email me

Adecco