Senior Manager of Application Security leading initiatives to protect applications at Nordstrom through strategic leadership and AI - driven tooling. Collaborating with engineering to ensure secure software development practices.
About the role
- Cloud Security Architect at UBDS Group designing and implementing effective cloud security solutions for diverse clients. Collaborating with stakeholders to enhance cloud security and compliance practices.
Responsibilities
- Design and implement cloud security architectures that meet client requirements and industry best practices
- Conduct security assessments and provide recommendations to enhance the security posture of cloud environments
- Develop and maintain security policies, standards, and procedures to ensure compliance with regulatory requirements.
- Collaborate with clients to understand their security needs and provide tailored solutions.
- Lead security assurance activities, including risk assessments, vulnerability assessments, penetration testing, and threat modelling techniques such as MITRE ATT&CK, STRIDE, DREAD, and PASTA.
- Provide expert guidance on security controls and measures to protect cloud infrastructure and data.
- Stay up-to-date with the latest security trends, threats, and technologies to continuously improve security practices.
- Work closely with cross-functional teams to integrate security into the overall cloud strategy.
Requirements
- Proven experience as a Cloud Security Architect, with a focus on Security Assurance.
- Strong knowledge of cloud platforms such as AWS, Azure, Google Cloud, and M365.
- Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS).
- Experience with security tools and technologies, including firewalls, intrusion detection/prevention systems, and encryption.
- Excellent problem-solving skills and the ability to think critically and strategically.
- Strong communication and interpersonal skills, with the ability to engage effectively with clients and stakeholders.
- SC Cleared or eligible for SC Clearance.
- **Desired Skills:**
- Certifications such as CISSP, CISM, CCSP, and vendor certifications from Microsoft, AWS, Palo Alto, Cisco, etc.
- Experience with DevSecOps practices and tools.
- Knowledge of container security and microservices architecture.
- Understanding of Zero Trust security models.
- High-level and low-level designs, assurance on large projects/programmes, self-motivated, customer-facing, and the ability to translate technical concepts for non-technical stakeholders.
Benefits
- Training – All team members are offered a number of options in terms of personal development, whether it is technical led, business acumen or methodologies. We want you to grow with us and to help us achieve more
- Private medical cover for you and your spouse/partner, offered via Vitality
- Discretionary bonus based on a blend of personal and company performance
- Holiday – You will receive 25 Days holiday, plus 1 day for Birthday and 1 day for your work anniversary in addition to UK bank holidays
- Electric Vehicle leasing with salary sacrifice
- Contributed Pension Scheme
- Death in service cover
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Information Security Engineer responsible for deploying and supporting security tools across cloud and on - premise systems. Collaborating with IT to mitigate security risks in a hybrid work environment.
Casual Retail Security Officer for MSS Security ensuring safety at Tweed Mall in Tweed Heads. Responsible for patrols, incident response, and customer service.
Financial security advisor at Desjardins developing client relationships and selling life and health insurance products. Focusing on customer satisfaction and personalized financial solutions.
Principal Information Security Consultant at Westpac focusing on security protocols and employee benefits for staff. Hybrid role centrally located with opportunities for professional development and employee perks.
Engineer supporting secure development lifecycle processes for product lines in the energy sector. Collaborating with R&D on security requirements and compliance audits.
Automation Oversight Engineer providing oversight of compliance in automated device configurations for Comcast Business. Managing configuration checks and reporting, ensuring reliable oversight and improvement strategies.
Principal Systems Engineer - Cybersecurity role in protecting our nation's products as part of Integrated Platform Solutions team. Develop solutions utilizing RMF, Anti - Tamper, Software Assurance, and more.
Agent de Sécurité assurant la sécurité des usagers du réseau de transport TBM. Rattaché au Manager de Proximité Sûreté, garantissant la qualité de service public de transport en commun.
Web and Remote Access Security Engineer managing secure remote connectivity solutions. Collaborating across security and networking domains to enable reliable access for global workforce.