Job Description As one of our Security Engineers, you will join a multidisciplinary team, working together with other Security Engineers, Product Managers and Security teams.
You will design, build and deliver secure, high-quality enterprise solutions across numerous initiatives within the organisation, spreading your security knowledge to an ever-expanding engineering community, increasing our security posture and helping identify and reduce our risk exposure.
You will bring subject-matter expertise around Cloud Security to the team.
You will be responsible for the design, implementation, and maintenance of our organisation's cloud-based security systems.
As a Cloud Security Engineer, you will need to have a thorough understanding of complex IT systems and stay updated with the latest security standards, systems, and authentication protocols, as well as various cloud services and resources.
Responsibilities Design, develop, and deploy scalable cloud-based security solutions.
Perform vulnerability testing, risk analyses, and security assessments against our cloud environment.
Develop and coordinate cloud security procedures and disaster recovery plans.
Build a deep understanding of our cloud security tooling and drive improvements in coverage and utilisation of the tools.
Collaborate with Security Operations, Threat & Vulnerability Management and software development teams to ensure cloud solutions are securely integrated with new and existing software and infrastructure.
Support with conducting security training and awareness programs to educate staff about cloud security risks and responsibilities.
Maintain compliance with all relevant security and privacy laws and regulations.
Articulate mitigation and development techniques around emerging threats to technical and non-technical stakeholders Work with other Security Engineers on collaborative projects and deliverables that support other Security & Fraud functions and business needs.
Qualifications About You Proven experience in a cloud computing environment (Azure, AWS, GCP) Strong understanding of cloud architecture and security principles Experience with security tools and technologies such as Wiz, Sentinel, Microsoft Defender Suite, Azure, Kubernetes.
Knowledge of regulatory requirements and industry standards related to cloud security.
Knowledge of Infrastructure-as-code (IAC) and an understanding of misconfigurations.
Experience building applications, scripts, pipelines or automation using modern technologies and languages such as PowerShell, YAML, Python, C#, Java, Docker, Kubernetes Additional Information BeneFITS' Employee discount (hello ASOS discount!
) ASOS Develops (personal development opportunities across the business) Employee sample sales Access to a huge range of LinkedIn learning materials 25 days paid annual leave + an extra celebration day for a special moment Discretionary bonus scheme Private medical care scheme Flexible benefits allowance - which you can choose to take as extra cash, or use towards other benefits Why take our word for it?
Search #InsideASOS on our socials to see what life at ASOS is like. Want to find out how we're tech powered?
Check out the ASOS Tech Podcast here https://open.spotify.com/show/6rT4V6N9C7pAXcX60kzzxo .
Prefer reading?
Check out our ASOS Tech Blog here https://medium.com/asos-techblog .