Cloud Security Engineer

United Kingdom - Swindon - Station Square (PPS)

Edenred

Découvrez le groupe Edenred, la plateforme de service et de paiements qui accompagne au quotidien les acteurs du monde du travail dans 45 pays.

View all jobs at Edenred

Apply now Apply later

Take a step forward and let Edenred surprise you.

Every day, we deliver innovative solutions to improve the life of millions of people, connecting employees, companies, and merchants all around the world. 

We know there are hundred ways for you to grow. With us, you will expand your skills in a multicultural, challenging, and dynamic environment. 

Dare to join Edenred and get ready to thrive in a global company that will offer you endless opportunities.

Edenred is all about meritocracy. You come as you are, and you contribute. Indeed, the Edenred Group recognizes, recruits and develops all talents and singularities.

We are committed to preventing all forms of discrimination and to providing all our candidates with equal opportunities regardless of their gender and gender expression, disability, origin, religious belief and sexual orientation or any other criteria.

Senior Cloud Security Engineer

Location – Swindon or London

Salary – £65,000 to £75,000 + Bonus

This role reports to the Head of Cloud Platforms and works within the Cloud Platforms Team, collaborating with architects and other counterparts across the organization to deliver a world-class cloud platform solution. The position involves developing and nurturing strong cloud security talents within the organization and implementing security best practices while building cloud services and products.

As a hands-on role, it requires participation in the team’s technical support activities and out-of-hours on-call support. The individual will serve as a Subject Matter Expert for the organization, influencing and implementing security solutions in the cloud or using cloud security tools elsewhere, such as on-premise. Additionally, they will work with other teams, including wider Technology, InfoSec and SOPs, to ensure the organization and its customers maintain robust cloud security practices.

Roles and Responsibilities

The primary roles and responsibilities for this position include, but are not limited to, the following:

  • Lead and champion platform security and compliance within the cloud team, acting as a security evangelist.

  • Participate in daily SIEM review standup calls with the InfoSec team, follow up, and act on daily security hub findings.

  • Drive security incident investigations, produce reports, and recommend preventive measures for future events. Utilize cloud security tools as a subject matter expert to prevent and respond to major security incidents, such as ransomware, in collaboration with CSIRT and other security bodies.

  • Design, deploy, and manage cloud security-focused services, including Managed Website Protection, Cloud Security Audits, and Managed Cloud Security services. Stay informed about sector challenges and develop solutions to address them.

  • Participate in the platform High-Level Design process, providing security perspective inputs for design decisions. Apply security and architecture principles such as least privilege, defense in depth, and Zero Trust to all aspects of cloud services.

  • Monitor and manage PCI DSS v4.0.0 compliance and other security benchmark standards like CIS and AWS Security best practice scores across the platform.

  • Execute regular internal PCI DSS and other security compliance-related audits, maintaining up-to-date audit logs.

  • Lead the cloud platform team during the annual PCI DSS audit and certification process, ensuring all requirements are met and evidence is readily available for QSA audits.

  • Be on call to respond to security-related incidents impacting customers and overall platform security postures. Automate security functionality to support a 24/7 incident response framework integrated with our cloud security posture management (CSPM) services.

  • Oversee all security aspects related to cloud platforms. Ensure PayTech technical security architecture controls are up-to-date, effective, and aligned with industry best practices, and tooling. Be able to research, explore new tools and evaluate to best suit our cloud estate.

  • Manage all security administrative activities performed by the cloud security team, including AV, EDR, HIPS, Web Application Firewall tuning, DDoS protection, security incident response, audits and health checks, penetration testing, and remediation activities.

Skills & Experience

  • Advanced knowledge of public cloud Security architecture, particularly AWS

  • Knowledge of relevant cyber security threats/attack patterns and applying this to securing cloud deployments.

  • Good knowledge of the state of the art in public cloud security practice

  • Thorough knowledge of the latest security best practice, particularly its application to financial sector organisations

  • Aptitude to maintain current knowledge of threats, vulnerabilities and security best practices primarily focused but not limited to AWS

  • Full Stack security knowledge across the AWS Shared Security Model ensuring security has been considered and applied within PayTech’s area of responsibilities as a managed cloud

Why PayTech?

We are a subsidiary of the Edenred group and leaders in prepaid solutions including banking, virtual cards, debit, credit, and prepaid processing.

As a PayTech employee you will get the support and structure that you need to enjoy your work and develop your career while doing what you love and making a difference in a fast-paced and innovative business.

What you will get:

  • 25 days annual leave plus Bank Holidays

  • Hybrid working environment with a 3 days per week in the office

  • Income protection

  • Life insurance (4x salary)

  • Wellbeing Employee Assistance Program (extended access to family members)

  • Employee discount shopping platform

  • Digital learning platform

  • Complimentary fruit and other ‘in office’ snacks & refreshments

  • Volunteering programme

  • Social events

  • Pension Scheme – employer 6% with minimum employee contribution 3%

  • Discretionary bonus scheme based on company and personal performance

  • Holiday trading scheme (buy or sell up to 5 days)

  • Medical & international travel cover (leisure and action sports)

  • Monthly gym allowance

  • Employee referral bonus scheme

  • Season ticket loan

  • Cycle to Work scheme

Diversity:

Edenred UK and PayTech are proud to be an equal opportunity employer. We will not discriminate against any applicant or employee based on age, race, colour, creed, religion, sex, sexual orientation, gender, gender identity or expression, national origin, citizenship, marital status or civil partnership/union status, disability, pregnancy, genetic information, or any other basis prohibited by applicable country or local laws.

Apply now and Vibe with Us!

Apply now Apply later
Job stats:  12  5  0

Tags: Audits AWS Banking Cloud Compliance CSIRT CSPM DDoS EDR Firewalls Full stack Incident response PCI DSS Pentesting SIEM Vulnerabilities Zero Trust

Perks/benefits: Career development Insurance Medical leave Salary bonus Team events Wellness

Region: Europe
Country: United Kingdom

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.