Cloud Security Engineer required in Stellenbosch. One of the largest national financial services companies is looking for a Cloud Security Engineer to join their IT team on a full-time permanent basis in Stellenbosch, although this is a hybrid position. Excellent salary on offer plus benefits and internal career advancement opportunities. The purpose of the role is to provide cloud security expertise to build out and maintain resilient, scalable, cost effective and high performing Cloud solutions that will assist the company to become the best bank in the world. Experience Required: Minimum: 7+ Years’ experience in Infrastructure, Software Development, DevOps or Security 4+ Years design and implementation of highly available, enterprise-scale public Cloud infrastructure. 3+ Years in AWS with focus on Security&IAM Of introducing cloud security technology (start-up) in an environment – processes, principles etc. Design and hands on troubleshooting background on AWS Platform (Azure or GCP will be advantageous). Experience working in a DevOps environment. Experience developing and supporting infrastructure and cloud security capabilities for micro services-based architectures. Experience working with CI/CD tools. Experience with authentication and Authorization technologies and protocols (LDAP, Kerberos, AD, OAuth 2.0, OpenID Connect, SAML). Experience working with scripting and provisioning tools like Terraform, Ansible, CloudFormation or equivalent. Ideal : 2+ years in AWS with focus on Networking Experience in a financial services or banking organisation Infrastructure security Experience in engineering data pipelines using Big Data technologies such as Spark, Kafka, Hadoop, Storm, etc. Experience with ELK, New Relic or similar on Public Cloud Platforms. Experience with Docker and Kubernetes. Experience working in a fast paced Agile/Scrum environment (Atlassian Stack). Knowledge Required : Minimum: Basic understanding of at least one high-level programming language (GoLang / .net / Java) Advanced scripting skills in at least one interpreted language (Bash/PowerShell) Design and deployment of highly available, enterprise-scale Cloud infrastructure. Advance knowledge of infrastructure concepts, technologies and patterns. (SDLC, IaC) Practical, working knowledge of: Developing and delivering systems on AWS Platforms (Azure or GCP will be advantageous). Supporting and enhancing build and release processes through automation using a combination of processes and existing tools. Understanding of Cloud Security technologies and best practices. Understanding of Networking in Cloud environments. Ideal: Previous experience in a Devops role and incorporating security controls in the build process. Experience in engineering data and/or security log pipelines using Big Data technologies such as Spark, Kafka, Hadoop, Storm, etc. Understanding of modern software engineering patterns, including those used in highly scalable, distributed, and resilient systems. Ability to deliver long-term, repeatable IaC solutions that incorporate directly into an overall CI/CD process. Knowledge of JSON templates, PowerShell, CLI’s, Shell, Python. Qualifications Required: Minimum: A relevant tertiary qualification in AWS Foundation or Cloud Computing Ideal or Preferred: Bachelor’s Degree in Information Technology or Engineering – Other Key Performance Areas 1. Cloud Security Focus • Apply cloud security know how to assist in constructing and developing the roadmap pertaining to Cloud technology. • Drive innovation by remaining current with cloud and cloud security technologies in order to enhance products&services offerings to the organisation. • Engage with multiple business units on planned Cloud deployments and investigate deployment and configuration best practices and architectures, focusing on security. • Define and document Cloud standards pertaining to infrastructure and security configurations. • Provide research and advice on industry best practices, technology and tools for consideration in the environment. • Develop and execute test plans to check technical performance and make recommendations for improvements. • Collaborate with stakeholders to drive continuous Improvement of Cloud Security Posture through automation. • Work closely with Cyber Security, Data Governance and Infrastructure Security teams to ensure the companies cloud environment adheres to regulatory requirements and complies with the bank’s own security&risk standards. 2. Design and build Infrastructure solutions • Engage with vendors / suppliers / business partners for the design and implementation of cloud security solutions as needed. • Design and build out new cloud security solutions that meet the technical requirements and align with, but not limited to: o Information security and governance frameworks o Regulatory compliance o High availability strategy o Scalability and capacity planning • Review and analyse the cloud security landscape and improve and optimize current cloud implementations for continuous improvement and the assurance of technical safeguards for requirements. • Responsible for document designs, specifications and implementations for cloud security. 3. Implement Infrastructure designs Apply cloud security technical know-how to: • Create detailed planning and implementation documentation, enhancing current standards and quality. • Prepare hand-over documentation and document support processes to stakeholders. • Liaise with stakeholders to plan the execution of deliverables according to implementation documentation. • Provide technical cloud security support to divisions ensuring effective and efficient handover. • Where required, perform the implementation of more complex deployments. • Responsible for post implementation handover (or implementation) review and learnings for future reference and improvements. 4. Maintain infrastructure Maintenance of the cloud security infrastructure environment through executing and being responsible for various tasks: Automating cloud security deployments and testing. Document Standard Operating Procedures (S.O.P’s) and upkeep of general documentation. Provisioning of new services and catalogue items. Ensuring license compliance by auditing current license requirements and plan for future requirements. System and software compliance using implemented standards, industry standards and best practises within information security and regulatory requirements. Configuration management using on premise as well as AWS native tools. This will involve creating and maturing standards for new cloud security deployments and estate management Continuous firmware and security vulnerability improvements. Create accurate management reporting information with regards to cloud security costs, usage, constraints and risks. Forecast the growth in cloud security infrastructure requirements. Recording and reporting on current usage as well as trending for future requirements. Service availability using monitoring and alerting tools. Perform 3rd level support for the resolution of critical infrastructure related issues. Participate in knowledge sharing Skills Required: Communications Skills Competencies Care and passion for our people (Departmental Contributor) Earn and extend trust (Departmental Contributor) Simplify and make it easy (Departmental Contributor) Drive innovation mindset (Departmental Contributor) Lead with the “Why” (Departmental Contributor) Attract and relentlessly develop people (Departmental Contributor) Make decisions – faster and smarter (Departmental Contributor) Inspire optimism and persistence (Departmental Contributor) Conditions of Employment Clear criminal and credit record A valid driver’s license and own vehicle is required Applying for this position: Only open to South African citizens. If you are interested in this great career opportunity, please send your CV with position title as reference. #J-18808-Ljbffr