Skip to main content

You will need to login before you can apply for a job.

Senior Cloud Security Engineer

Employer
Coller Capital
Location
London, United Kingdom
Salary
Competitive
Closing date
17 Aug 2024

View more

Sector
Engineering, IT, Security
Job Role
Cloud Security
Job Type
Permanent
Coller Capital is one of the world's leading investors in the Private Equity Secondary market. The firm provides liquidity solutions to Private Equity investors worldwide, acquiring interests in private equity funds, portfolios of private companies, and other private equity-related assets.

Coller's IT function comprises of around 35 professionals who, with the help of external service providers, implement and manage solutions to fulfil existing and emergent business requirements throughout the organisation.

Our enterprise technology is being transformed to a Cloud-First, Cloud-Native architectural model, utilising DevSecOps processes and adoption of systems thinking concepts from LEAN to enhance productivity. Our Cloud Engineers are responsible for delivering Cloud-native solutions that are fully automated through code, are scalable, and maximise availability and reliability 24 x 7.

As a Senior Cloud Security Engineer you will:
  • Have broad responsibilities to engineer and secure our core Azure platform services across our global footprint.
  • Design, implement, and maintain secure cloud architectures across our Azure cloud platform.
  • Develop and enforce cloud security policies, procedures, and best practices.
  • Conduct regular security assessments, audits, and penetration testing to identify and mitigate vulnerabilities.
  • Implement and manage cloud security tools and services, such as SIEM, IAM, and DLP.
  • Collaborate with cross-functional teams to ensure the integration of security throughout the IT lifecycle.
  • Investigate and respond to security incidents, and develop incident response and disaster recovery plans.
  • Ensure compliance with industry standards and global regulatory frameworks.
  • Provide guidance and training to team members on cloud security best practices.
  • Stay up-to-date with the latest cloud security threats, technologies, and countermeasures.
  • Run our Infrastructure with Python/PowerShell, Ansible, Terraform, Azure DevOps CI/CD, and Kubernetes.
  • Build monitoring that alerts on symptoms rather than outages.
  • Document every action so your findings turn into repeatable actions and then into automation.
  • Improve operational processes (such as deployments and upgrades) to make them as deterministic as possible.
  • Design, build and maintain core infrastructure that enables scaling to support the growth of the Coller business.
  • Debug production issues across services and levels of the stack.
  • Plan the growth of the Coller Capital infrastructure as the business scales

You may be a fit for this role if you have some of these inclinations:
  • Attention to detail and ability to think like an attacker.
  • Desire to continuously learn and adapt to the ever-evolving cloud security landscape.
  • Enjoy collaborating with others and promoting a culture of security awareness.
  • Ability to effectively communicate complex security concepts to both technical and non-technical stakeholders.
  • Continual learning and advancement of Microsoft Azure technologies (OS Compute, Storage, Networking, Security, Management) and Docker, Kubernetes, Terraform, or similar technologies.
  • Have a keen interest in Open Source development and industry innovation.
  • Know what the use of configuration management systems (like Ansible) are for.
  • Collaborating and communicating both synchronously and asynchronously.
  • Documenting all things so you don't need to learn the same thing twice.
  • Have an enthusiastic, 'go-for-it' attitude. When you see something broken, you can't help but fix it.
  • Have an urge for delivering quickly and effectively and iterating fast.Share the Coller Capital values, and work in accordance with those values.Strong passion for cybersecurity and protecting cloud-based assets in a Financial Services environment.Share the Coller Capital values, and work in accordance with those values.Strong passion for cybersecurity and protecting cloud-based assets in a Financial Services environment.
  • Proactive mindset in identifying and addressing potential security risks.

What do we expect from you in the role:

Technical
  • Extensive experience with cloud security architectures and best practices across Azure cloud platform.
  • Deep understanding of cloud security controls, including IAM, network security, data protection, and security logging/monitoring.
  • Deep understanding in cloud security tools and services, such as Azure Security Center.
  • Knowledge of common security frameworks and compliance standards, such as NIST, ISO 27001, and SOC 2.
  • Familiarity with security testing methodologies, such as penetration testing and vulnerability assessments.
  • Experience with SIEM tools, such as Splunk, ELK stack, or Azure Sentinel.
  • Understanding of secure coding practices and experience with static code analysis tools.
  • Incident response and forensics skills.
  • Relevant security certifications, such as CISSP, CCSP, or cloud platform-specific certifications
  • Infrastructure as code: use Terraform and Azure DevOps CI/CD for automation, containerise our environments (Kubernetes), and leverage Cloud technologies to meet the firms' goals.
  • Proficiency in at least one object-oriented programming language.
  • Monitoring/instrumentation: implement metrics in Prometheus, Grafana, log management and related systems.
  • Engineering practices: availability, reliability, and scalability, as well as disaster recovery

Execution
  • Identify significant projects that result in substantial improvements in security, cost savings and/or revenue.
  • Proactively work on the efficiency and capacity planning to set clear requirements and reduce the system resources usage to make IT more cost effective to run for our business.
  • Identify parts of the system that do not scale or are not secure; provide immediate measures and drive long term resolution of these incidents.
  • Identify changes to the Cloud platform architecture from the reliability, performance and availability perspectives with a data driven approach.
  • Planning: familiarity with Agile methodologies; use epics, issues to drive projects
  • Organisation: workload organisation, OKR leadership
  • Management: able to self-organise and report asynchronously

Collaboration and Communication
  • Lead initiatives and problem definition and scoping, design, and planning through epics and blueprints.
  • Lead and contribute to scope and designs for issues, epics, and OKRs.
  • Deep domain knowledge and radiate that knowledge through recorded demos, technical presentations, discussions, and Incident Reviews.
  • Create and update runbooks and general documentation and write knowledge base articles.
  • Complete Root Cause Analysis (RCA) investigations and perform readiness review.
  • Improve practices through code reviews, handoffs of work and incidents.

Influence and Maturity
  • Knowledge sharing and mentoring of other team members across I&O.
  • Self-awareness, handling conflict, and providing and receiving feedback.
  • Maintaining good relationships with other IT teams in Coller that help improve the global platform.
  • Accountability: willing to proactively step in and do the right thing while providing candid and constructive feedback

Coller Capital is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We consider qualified applicants without regard to race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. We are dedicated to complying with all applicable laws of the respective jurisdiction in which we operate.

We encourage all qualified applicants to apply and we will provide reasonable accommodations for individuals with disabilities to participate in the application process.

Department IT Locations London

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert

Similar jobs