Senior Cloud Security Engineer

What do we do?

As a pioneer for digital transformation, GFT develops sustainable solutions across new technologies – from cloud engineering and artificial intelligence to blockchain/DLT. With its deep technological expertise, strong partnerships, and comprehensive market know-how, GFT offers advice to the financial and insurance sectors, as well as the manufacturing industry. Through the intelligent use of IT solutions, GFT increases productivity and creates added value for clients. Companies gain easy and safe access to scalable IT applications and innovative business models.

Who are we?

Having started in Germany in 1987, GFT Technologies has grown to become a trusted Software Engineering and Consulting specialist for the international financial industry, counting many of the world’s largest and best-known banks as our clients. We are an organization that empowers you to not only explore but raise your potential and seek out opportunities that add value. At GFT, diversity, equality, and inclusion are at the core of who we are. Ensuring a diverse and inclusive working environment for all communities is one of the main pillars of our diversity strategy, based on our core values and culture. We have been certified for 2022/23 as a ‘Great Place to Work’ in the APAC region. So, if you want to have the opportunity to work with an outstanding and progressive organization, this position could be right for you.

Role Summary

In this role, you will make significant contributions to building secure and modern cloud solutions. You will be part of a team responsible for designing and implementing security measures to protect cloud environments, assessing potential vulnerabilities, and ensuring compliance with security standards.

Key Responsibilities

• Perform cloud security assessments and implement security best practices based on standards like ISO 27001, CIS, and ICS controls.
• Design and implement security measures for cloud environments, including AWS Inspector, AWS GuardDuty, Security Hub, VPC, WAF, and Trusted Advisor.
• Utilize Infrastructure as Code (IaC) technologies to automate security infrastructure deployment.
• Manage application security, following OWASP 10 and SANS 25 guidelines, and perform SAST, DAST, and SCA.
• Conduct threat modeling, vulnerability management, and penetration testing for cloud infrastructure and applications.
• Implement data governance processes, encryption mechanisms, and ID & Access Management (IAM).
• Develop processes for incident and change management, business continuity planning, and capacity management.
• Monitor and analyze logs for security insights and ensure compliance with DLP processes.
• Collaborate with DevOps/DevSecOps teams to enhance security automation and adopt secure coding practices.

Required Skills

• Bachelor’s degree in Information Systems, Information Technology, Computer Science, or similar.
• 5-7 years of experience in cloud security engineering.
• Strong knowledge of cloud architecture, cloud services, and security frameworks.
• Proficiency in Infrastructure as Code (IaC) tools like Terraform and cloud platforms like AWS.
• Experience in application security, vulnerability management, and penetration testing.
• Familiarity with log monitoring services and incident management processes.
• Recommended certifications: CCSK, CCAK, CCSP, AWS Security Specialty.