Cloud SecOps Engineer

Edinburgh

NatWest Group

NatWest Group - Supporting customers, news, investors and sustainability

View all jobs at NatWest Group

Apply now Apply later

Join us as a Cloud SecOps Engineer

  • Take on a new challenge and use your specialist knowledge to support the wider organisation in building and operating secure services that protect both colleagues and customers supporting against emerging threats
  • You’ll act as a subject matter expert in a security related field, making sure that the security implications of the backlog are understood in the right way, building security early into design
  • You’ll be joining an exciting and fast-paced area of the bank, where you can expect great exposure both for you and your work
  • This role will also be required to be provide on call cover on a rotational basis 24/7, supporting any bankwide events and releases

What you'll do

As a Cloud SecOps Engineer, you’ll work at a domain level to understand and ensure robust security is continuously considered and incorporated at every stage, programme increment and feature team delivery throughout the development lifecycle and through to support.

You’ll collaborate with feature teams and participate in story refinement, sprint planning and retrospective sessions, establishing a culture of innovation and strategic thinking that makes sure that the bank has knowledge of, and opportunities to exploit, the latest developments in your area of specialism.

You’ll also be:

  • Supporting with the identification of risks, while contributing to risk management strategies to achieve business objectives and customer outcomes
  • Understanding and implementing Agile methodologies and actively contributing to finding opportunities to build security early into design to pre-empt vulnerabilities within our cloud-based infrastructure
  • Making sure that decisions made are based on robust data, return on investment and value measures that demonstrate thoughtful and intelligent cost management
  • Actively contributing to your centre of excellence (CoE) specialism by cross sharing learnings and best practice with CoE and community of practice colleagues
  • Building and leveraging relationships with colleagues across the bank and third parties to ensure decisions made are commercially focused and create long term value for the organisation

The skills you'll need

To be successful in this role, you’ll need knowledge of one or more security subject areas and experience of setting risk appetites. You’ll also demonstrate experience of, or a willingness to learn risk management frameworks in a fast-paced environment

Additionally, you’ll need:

  • A background of defining policy controls along with experience in KMS or secret management, HSM's and IAM
  • In depth knowledge of AWS, Docker, GitLab and Kubernetes
  • Experience in vulnerability and risk management along with threat detection and threat hunter 
  • An understanding of completing benchmarking to peers and industry standards
  • The ability to communicate clearly and concisely, translating technical issues into business oriented language
  • A good understanding of Agile methodologies

Hours

35

Job Posting Closing Date:

17/11/2024

Ways of Working:Remote First
Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  2  1  0

Tags: Agile AWS Cloud Docker Exploit GitLab IAM Kubernetes Risk management SecOps Threat detection Vulnerabilities

Perks/benefits: Team events

Region: Europe
Country: United Kingdom

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.