Senior Cloud Security Engineer

Job Description

As one of our Security Engineers, you are passionate about security and great engineering practises. You will join a multidisciplinary team, working together with other Security Engineers, Product Managers and Security teams. As an Engineer, you will design, build and deliver secure, high-quality enterprise solutions across numerous initiatives within the organisation, spreading your security knowledge to an ever-expanding engineering community, increasing our security posture and helping identify and reduce our risk exposure when building applications.

You will bring subject-matter expertise around Cloud Security to the team. You will be responsible for the design, implementation, and maintenance of our organisation’s cloud-based security systems. You will be a key subject-matter-expert on all things Cloud Security, helping teams make the right decisions when it comes to securing their systems. As a Cloud Security Engineer, you will need to have a thorough understanding of complex IT systems and stay updated with the latest security standards, systems, and authentication protocols, as well as various cloud services and resources.

Responsibilities

• Design, develop, and deploy scalable cloud-based security solutions.
• Perform vulnerability testing, risk analyses, and security assessments against our cloud environment.
• Develop and coordinate cloud security procedures and disaster recovery plans.
• Build a deep understanding of our cloud security tooling and drive improvements in coverage and utilisation of the tools.
• Collaborate with Security Operations, Threat & Vulnerability Management and software development teams to ensure cloud solutions are securely integrated with new and existing software and infrastructure.
• Articulate mitigation and development techniques around emerging threats to technical and non-technical stakeholders
• Work with other Security Engineers on collaborative projects and deliverables that support other Security & Fraud functions and business needs.
• Utilise your strong coding skills to help create new tools and applications within the security space.

Qualifications

About You 

• Proven experience in a cloud computing environment (Azure, AWS, GCP)
• Strong understanding of cloud architecture and security principles
• Strong experience with security tools and technologies such as Wiz, Sentinel, Microsoft Defender Suite, Azure, Kubernetes.
• Knowledge of regulatory requirements and industry standards related to cloud security.
• Knowledge of Infrastructure-as-code (IAC) and an understanding of misconfigurations.
• Experience building applications, scripts, pipelines or automation using modern technologies and languages such as PowerShell, YAML, Python, C#, Java, Docker, Kubernetes

Additional Information

BeneFITS’ 

• Employee discount (hello ASOS discount!) 
• ASOS Develops (personal development opportunities across the business) 
• Employee sample sales  
• Access to a huge range of LinkedIn learning materials 
• 25 days paid annual leave + an extra celebration day for a special moment 
• Discretionary bonus scheme  
• Private medical care scheme 
• Flexible benefits allowance - which you can choose to take as extra cash, or use towards other benefits 

Why take our word for it? Search #InsideASOS on our socials to see what life at ASOS is like. 

Want to find out how we’re tech powered? Check out the ASOS Tech Podcast herehttps://open.spotify.com/show/6rT4V6N9C7pAXcX60kzzxo. Prefer reading? Check out our ASOS Tech Blog here https://medium.com/asos-techblog.