Cloud Security Engineer

CoreView is the Global Leader in Effortless M365 Security, Governance, and Administration. Offering an end-to-end solution that stretches across the whole M365 ecosystem; from your tenant level configurations, right up to your most critical workloads.

Created by M365 experts, for M365 experts, CoreView makes best practice for M365 effortless by simplifying, unifying, and enhancing the M365 admin experience. CoreView empowers 1500 M365 organizations to turn the tide on endless tasks, deliver best practice security, and drive ROI.

As we grow, we are looking to hire people who believe in our values and our goals. Our values are the core of everything we do;

Collaboration – Sharing knowledge, resources and support to drive success

Ownership – Holding ourselves accountable for delivering excellence

Respect – Valuing every voice to build a stronger tribe

Empathy – Understanding each other to foster a supportive workplace

We are committed to creating a diverse and inclusive global workplace, helping each other achieve our goals, and trying to have fun along the way….

Job Summary

Join our security team as a Cloud Security Engineer to build and maintain secure cloud services, ensuring robust security measures from design to implementation.

Responsibilities.

• Enhance and sustain robust security solutions for cloud monitoring, vulnerability remediation, and incident detection to safeguard environments effectively.
• Continuously monitor cloud infrastructure, promptly respond to security incidents, and mitigate potential threats to maintain high security standards.
• Maintain compliant cloud infrastructures, uphold regulatory requirements, and enforce company policies to mitigate risks effectively.
• Evaluate operational processes regularly, providing insights and recommendations for enhancing efficiencies and security measures.
• Lead initiatives to innovate security practices, incorporating emerging technologies and methodologies to strengthen cloud security frameworks.

• Integrate DevSecOps practices by automating security measures and embedding security early in the development lifecycle for enhanced protection.

Requirements

• Relevant experience with Cloud Service Providers. You have hands-on experience managing and securing cloud environments, particularly in Microsoft Azure, demonstrating deep expertise in cloud service management and security.
• Understanding of Cloud Service architecture. You’re knowledgeable in Cloud service architecture, specializing in implementing and maintaining robust security measures within cloud environments to ensure optimal protection.
• Strong understanding of network security, application security, and vulnerability management.
• Strong experience with SIEM solutions, IDS/IPS, endpoint protection, encryption technologies, and identity management solutions. Knowledge of Microsoft Sentinel, Microsoft Defender XDR and Microsoft Defender for cloud.
• Knowledge of relevant security compliance, standards and regulations (e.g. ISO, SOC2, NIS2, CIS).
• Knowledge of internet security issues and the threat landscape (e.g. MITRE ATT&CK, CVEs, CWE).
• Experience with Vulnerability Management, Threat modeling, Risk Assessment and Risk Mitigation.
• You’re capable of promptly detecting and responding to security incidents, minimizing impact and ensuring swift resolution through effective communication and decisive action.
• You’re skilled in breaking down complex security issues, enabling efficient problem resolution and proactive management of cloud security challenges. Result oriented and with a continuous learning approach.
• Proficient in English. You read and write proficiently and speak at a conversational level in English

Nice to have

• Microsoft Certified: Azure Security Engineer Associate
• Microsoft Certified: Cybersecurity Architect Expert
• Microsoft Certified: Security Operations Analyst Associate
• Cybersecurity certifications like: Offensive Security - OSCP, OSCE, OSWE, EC-Council C|EH (Certified Ethical Hacker), ISACA - CSX Fundamentals, CISSP.
• Experience with Kubernetes, including security best practices.