Cloud Security Engineer

Cloud Security Engineer

SWIFT

Leiden, Netherlands

As a senior member of the team, you will undertake moderately complex projects ensuring the security and compliance of Swift’s cloud infrastructure, compute, and network resources. You will also contribute to the definition of cloud security controls and policies, within established guidelines; ensuring they are effective and appropriate for SWIFT and its customers, and that they are consistent with the company objectives, company reputation and regulatory requirements.

Job responsibilities

• Analize cloud security non-compliances to determine their root causes. Define solutions to address the root causes of non-compliance. Evaluate security exceptions and risk scenarios.
• Work with the Cloud Platform Security Engineering team to design and integrate into day-by-day operation (operationalize) new cloud security features and services
• Support workloads (application and infrastructure security) in their migration to cloud
• Build an understanding of vulnerabilities and misconfigurations management process, related controls, and key roles and responsibilities
• Create and maintain engineering and architectural documents
• Translate requirements and root cause remediations into Agile epic and user stories or work items for the cloud security engineering team, and cloud platform/workload engineers and developers
• Engage and work directly with application owners, onboard users to cloud security tools, provide user support, perform user acceptance tests, and troubleshoot cloud tool issues
• Design automation to solve repeatable scenarios

What will make you successful?

We are seeking professionals with:

• 8+ years of relevant work experience
• Bachelor’s degree in computer science, Information Systems or a related field

Technical Skills:

• Experience with Cloud Security services, preferably AWS. Azure and GCP knowledge are welcome.
• Solid understanding of core cloud security concepts, services, cloud compute and container technologies
• Experience in Agile operations and supporting tools (Jira, Confluence, ServiceNow)
• Understanding of DevOps, Infrastructure as Code, and IAM Permissions
• Experience with security vulnerability and configuration scan tools and report analysis
• Understanding of industry standards and compliance requirements, such as PCI-DSS, CIS.

Soft Skills:

• Analytical Thinking: ability to analyze security threats and vulnerabilities and develop effective mitigation strategies.
• Problem-Solving: Strong problem-solving skills to address and resolve security issues promptly.
• Communication: Clear communication skills, both verbal and written English, to collaborate with team members, stakeholders, and clients.
• Continuous Learning: Staying updated with the latest security trends, threats, and updates.
• Autonomous, driven, with strong ability to quickly adapt and respond to change.
• Customer oriented and security mindset – we continually strive to deliver true customer value.
• Open-minded, solutions oriented, and a true team player.