Cloud Security Architect at Mansion House Consulting, London, £550 per day

£550 per day
  • Contract Spy
  • London, UK
  • Jan 07, 2021
Duration not stated

Contract Description

Cloud Security Architect

Are you a passionate and confident Cloud Security Architect ready to make a significant contribution working for one of the UK's fastest growing Financial Services Consultancies?

Then read on!

MHC Overview:
MHC are an award-winning IT and Business Consultancy, specialising in Change Management initiatives, which we deliver working in a collaborative way with our Clients. We are currently working on a wide variety of assignments that include some major Digital Transformation initiatives, Regulatory and Compliance Programmes and Tools adoption projects where we are providing specialist technical and business services to a client base of primarily Tier 1 Banks.

Responsibilities:

  • Identify, deliver, and document the required artifacts to enable movement of applications and data to the cloud securely. This includes understanding security requirements, cloud services and products awareness, solution architecture design and review, working with the cybersecurity organization to streamline governance.
  • Hands-on, directly interact with the engineering and application development teams and provide leadership to drive alignment on security requirements, influence decision makers, build relationships, and communicate strategy and architecture to the broader internal community. Be able to influence and work collaboratively to guide the developers, engineers and architects to deliver applications into the cloud securely and using reusable patterns.
  • Provide a detailed understanding of cloud security and cloud infrastructure services, threat landscape and attack scenarios, risks.
  • Possess significant breadth across other disciplines (eg, enterprise security architecture, compute services, storage, large-scale networking, virtualization, data center, integration architecture (API), orchestration technologies (Kubernetes, Docker, open stack), systems resiliency, service support, Secure application development life cycle management (DevSecOps), and service delivery).
  • Work with the Enterprise cloud security architects to produce secure standards for cloud services/products that require approval for use and follow the necessary governance processes.
  • Assist in preparation of high-level as well as detailed solution design documents
  • Assess security posture of the proposed solutions
  • Assist in working on security control documents for various environments
  • Work on aligning the strategic tooling with the necessary security controls
  • Assist in delivery of implementation procedures for various Vulnerability management capabilities across all clouds - AWS, GCP, Azure, Ali and manage overlap with on-prem
  • Work with stakeholders to understand the business requirements and translating to technical requirements

Role Requirements:

  • Proficiency in Security for Cloud
  • Proficiency in Vulnerability Management
  • Excellent command of Cybersecurity organization practices, operations risk management processes, principles, architectural requirements, engineering threats and vulnerabilities, including incident response methodologies
  • Understanding of Secrets Management, Privileged Access Management, Identity Management on Cloud.
  • Experience in working on various Cloud Platforms - Azure, GCP, AWS, Ali
  • Ability to produce hardened configuration standards for cloud services
  • Threat modelling experience
  • Experience with one or more general purpose programming languages including but not limited to: Java, C/C++, Python, JavaScript and understanding of software vulnerabilities and vulnerability remediation
  • Experience with Cloud formation and Terraform or Ansible.
  • A proven track record working within an enterprise scale organisation
  • Keen understanding of national and international laws, regulations, policies and ethics related to financial industry cybersecurity
  • Ability to identify network attacks and systemic security issues as they relate to threats and vulnerabilities, with focus on recommendations for enhancements or remediation
  • Dev-ops and application security & data security experience
  • Solution architecture skills required

If this sounds like something that could potentially be of interest, please do not hesitate to apply for immediate consideration.