Cloud Security Senior Manager

Permanent - Strong salary + benefits

Location: Hybrid - Cambridge

Your new company

A NASDAQ listed semiconductor organisation in the UK are currently looking for a Cloud Security Senior Manager to join their ranks. The organisation are very well known in their world and offer strong benefits and hybrid working, as well as shares in the company, split over 4 years.

Your new role

You will be responsible for the cloud security of the organisation, which is currently in its infancy stages of becoming part of the enterprise security department. You will manage this process, working with various teams across the organisation. You will perform gap and swot analysis and configure plans moving forward. You will be supported both technically and resource wise. The client is looking for someone more technical than managerial, but some leadership experience will help. Ideally, this is not a role for someone from a consultancy background, unless it was particularly long term with the full implementation and maintenance exposure over a prolonged time. The client is predominantly AWS based, with small pockets of Azure and GCP. Some of the main elements of your roles, in the clients' words:

Working with the Enterprise Security, Architecture, Cloud Enablement & Engineering teams, you will plan, implement, and optimise security controls in the cloud (AWS) and drive delivery of CNAPP capability.
Utilise comprehensive technical assessments of existing cloud security capabilities and solutions to identify vulnerabilities and risks.
Create and deliver actionable recommendations and strategies for securing cloud solutions.
Implement security measures for cloud-native applications, including container security and serverless architectures.
Creating a sustainable framework and operational processes for continuous management of Cloud Security, within Security Technology Operations, integrating security controls seamlessly into technology and operational workflows.
Leveraging Infrastructure as Code (IaC) tools to automate the deployment of security controls, ensuring consistency and efficiency.
Enhancing security configurations and policies to minimise risks and ensure compliance with industry standards and regulations and alignment with industry-leading security frameworks, including the Cloud Security Alliance (CSA) Cloud Controls Matrix (CCM) and NIST guidelines, to strengthen cloud environments.
Providing training and awareness programs for partners and internal teams on cloud security standard methodologies.
Implementing standards and policies to safeguard workloads and the cloud infrastructure.
What you'll need to succeed

Experience with cloud technologies focused on security, both strategically and operationally, and implementing a strategic Cloud Security support model.
In-depth knowledge of cross-cloud security principles and standard processes with experience in implementation and automation.
Experience with security tools and technologies such as firewalls, CNAPP, intrusion detection/prevention systems, and SIEM.
The ability to communicate and report cloud security controls and a solid understanding of IAM and RBAC, with emphasis on applying the Least Privilege principle.
Experience of embedding and training cloud security practices within teams, particularly within Security Technology Operations (STO).What you'll get in return

This role is available for hybrid working with a typical requirement to work 2 days per week in the Cambridge office. Strong salary, which I cannot advertise (apologies).

7% pension - employers' contribution
PMI and dental
Shares, split over 4 years, works out to be a very beneficial added benefit.
And more!What you need to do now

If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV.
If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career.

Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)