Cloud Security Engineer - SecDevOps
HSBC Group
London, England
13d ago


Cloud Security Engineer SecDevOps, Cybersecurity

Some careers growfaster than others.

If you’relooking for a career that will give you plenty of opportunities to develop,join HSBC and your future will be rich with potential.

Whether you want a careerthat could take you to the top, or simply take you in an exciting newdirection, HSBC offers opportunities, support and rewards that will take youfurther.

The Cybersecurity team at HSBC are engaged to transform the wayinformation security is accomplished at the bank and we are set to enable thebusiness to do more, as securely as we want, or need to be.

In short, in line with the Bank’s strategy,we are to be Simpler, Better, Faster and of course More Secure.

To achieve this we have many exciting challenges ahead and are lookingfor people with a real passion for what they would like to do.

Working withsome of the best technology talent we are searching for technologists andenablers that will help support us on this journey.

As an HSBC employee inthe UK, you will have access to tailored professional development opportunitiesand a competitive pay and benefits package.

This includes private healthcarefor all UK-based employees, enhanced maternity and adoption pay and support whenyou return to work, and a contributory pension scheme with a generous employercontribution.

We are currently seeking an experiencedindividual to join this team in the role of Cloud Security Engineer SecDevOps.

You will be a member of the Global CybersecurityTechnology team who are responsible for identifying, developing and deployingglobal cybersecurity controls across the estate leveraging the firm’s assets,network and data to identify threats.

This role will partner heavily with ITInfrastructure Delivery (ITID) and support the end-to-end secure deployment ofsecurity technologies across the firm as well as leading and attracting talentto build a world class team.

In this role, you will :

Provide securityexpertise and perform high-level technical reviews of applications and usecases that are moving to one of the Cloud Platforms (AWS, Azure or GCP).

Solution and build CloudNative Detective and Responsive controls in AWS, Azure and / or GCP that enforcethe security baseline at scale, and when necessary integrate with open sourceand vendor tools.

Build automation toactively audit the infrastructure for security misconfigurations of AWS, Azureor GCP.

Collaboratively workwith vendors, client staff and contractors to implement and integratevendor-provided Cloud Security solutions.

Develop API integrationsand recommend configuration changes to improve the performance, usability, andvalue of cloud security tools.

Perform high-leveltechnical assessments of existing cloud security architectures, processes,projects and vendors; evaluate new and existing cloud security solutions insupport of deployments to one ofthe Cloud Platforms (AWS, Azure or GCP).

Supports compliance initiatives (contractual, regulatory, and internal) bycreating and delivering appropriate data-driven dashboards, reports, and othersupporting artifacts.

Work with cloud operations team to develop cloud monitoring use cases,design and develop scripts needed for troubleshooting and resolution ofsecurity or compliance issues.

  • Maintain knowledge of the latest cloud security threats.
  • Qualifications

    To be successful inthis role you should meet the following requirements :

  • Experience in a relevant technology field, such as software engineering, with current experience being in a technical security role.
  • Experience designing, developing, administering, and / or maintaining the security of cloud environments such as AWS, MS Azure or GCP, with a clear passion for cloud security and cloud technologies.
  • Extensive knowledge of cloud networking architecture, cloud operations, security, automation and orchestration.
  • Experience in building and deploying applications on the Cloud, using CI / CD frameworks and Infrastructure automation, such as : Terraform, Ansible and Jenkins.
  • Experience with scripting languages such as : JavaScript, Python, Go, Bash, Perl, PowerShell.
  • Experience in version control systems such as : Git, GitLab, etc.
  • Knowledge of data security requirements in the cloud aligned with FISMA, CJIS, PCI, HIPAA, NIST, FedRAMP, GDPR or other rigorous security compliance standards.
  • Knowledge of Cloud Security Alliance (CSA) Cloud Controls Matrix.
  • Familiarity with security issues associated with containers, distributed systems, and large-scale web applications.
  • Extensive knowledge of several key security practices in access control, application security, network security, security architecture, and security strategy.
  • The base location for this roleis Park Street, London.

    You’ll achieve more when you join HSBC.

    At HSBC we look to enable our employees to better balancetheir work / life priorities and have the flexibility required to meetchallenging needs as they progress through different life stages.

    Wherepossible we will consider the following flexible working options : part-timeworking, job sharing, term-time working, and working from home and staggeredhours.

    If in considering a role with HSBC you have a need for some flexibilityin your working arrangements please discuss this with the recruitment team inthe early stages of the application process.

    HSBCis committed to building a culture where all employees are valued, respectedand opinions count. We take pride inproviding a workplace that fosters continuous professional development, flexibleworking and opportunities to grow within an inclusive and diverse environment.

    Personal data held by the Bank relating to employment applications will be usedin accordance with our Privacy Statement, which is available on our website.

    Add to favorites
    Remove from favorites
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form