NSL – Cloud Security Specialist

Location(s): UK, Europe & Africa : UK :
London

BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.

As an AWS Cloud Security Architect you will be working with our teams and customers to use your cybersecurity expertise and knowledge of AWS to implement secure cloud environments. You will be responsible for taking legal and regulatory requirements, combining these with industry best practice, and applying these to AWS workloads and tooling. This is a key role working closely with the customer and their cyber security specialists to enact a large-scale cloud migration journey, as well as working on new cloud native projects.

We are looking for someone that is solution focused, who embeds security by design, and can ensure security is an enabler.

It’s an amazing time to join our team to help shape our customer’s exciting cloud adoption journey. Not only will your team be directly making a huge impact upon the systems you work on, you’ll be doing it for an organisation who makes a huge impact to the security of the UK.

Core Duties

Lead on developing secure architectures, patterns and processes that support a wide range of AWS services.

Working closely with solution architects and cyber security specialists; often translating concerns and requirements into a cohesive whole.

Apply security requirements to AWS architectures and services.

Ensure the cloud-based solutions meet legal and regulatory compliance.

Perform threat modelling and risk assessments of solutions built on AWS.

Develop the culture of security by design.

Design and support with implementing security controls to validate compliance and prevent non-compliance.

Work with the community of development teams to provide consultancy and guidance on secure cloud development as well as being an escalation point for security concerns.

Seek opportunities to improve the security posture.

Ensure security practices are accessible to all through documentation, reusable constructs and communicating these.

About you

You will have experience in many of the following:

You are regarded as a subject matter expert on AWS Cloud Security.

Proven experience in AWS cloud security architecture and design in enterprise environments at scale.

A deep understanding of general Cyber Security principles (e.g. encryption, secure network design, application attack vectors).

Practical knowledge of industry standard security frameworks such as CIS AWS Foundations Benchmark, NIST, ISO 27001, and regulatory requirements (GDPR, PCI-DSS).

A concrete understanding of core AWS principles (e.g. networking and IAM) with knowledge of security details across a range of AWS services.

Hands-on experience with AWS-native security tools (e.g. IAM, KMS, Guard Duty, Macie, WAF).

Proficiency in Infrastructure-as-Code (Cloud Formation, Terraform).

Excellent communication and stakeholder engagement skills.

You are curious and have a desire to continuously learn, being up to date with the latest threats and best practices.

It would be great if you also had experience in some of these

Industry certifications such as AWS Certified Cloud Security Speciality or CISSP.

Experience of securing container workloads.

Mentoring junior engineers and nurturing their passion for engineering.

Security Clearance is required for this vacancy.  If you are not currently Security Cleared, you will need to be eligible for this and willing to go through the process.

How we will support you

Work-life balance is important; you can work around core hours with flexible and part-time working

As many of our customers work predominantly in the office, we expect all of our staff to work at least 3 days per week in the office

You’ll get 25 days holiday a year and the option to buy/sell and carry over from the year before

Our flexible benefits package includes private medical and dental insurance, a competitive pension scheme, cycle to work scheme, taste cards and more

You’ll have a…