Cloud Security Operations - Hybrid (BGC) - Up to 138k

Role: Cloud Security Operations

Salary: Up to 138k

Set-up: Hybrid (BGC)

The Role:

You will be joining Insurance Consulting and Technology (ICT) at an exciting time of transformation as we work on improving the delivery of value for customers and the business. You'll be working in the Platform Core team within the Technology Delivery organization, whose responsibility is to deliver and manage business-critical services that are used 24×7 by our clients and colleagues around the world.

As part of a focused team, you will be supporting our Vulnerability and Security Operations function. Managing security governance, security incident management support, and proactive activities to better harden and secure our Azure platform.

Responsibilities:

• Manage Patching As Code with the Vulnerability Manager and ensure machines are kept up to date, patching and resolving issues.
• Deliver and review Security governance reporting and remediation activities
• Reviewing and supporting Security Incidents in Azure
• Be an active key contributor in our Cloud Governance function, working together to further secure and regularise our environments
• Supporting delivery and remediation of Azure Policies

Requirements

• Experience working in the Azure Cloud Platform and Cloud technologies (Iaas/PaaS/Access Management)
• Experience with Windows/Linux Patching
• Understanding of a security operations function within a complex environment (SIEM/SOC)
• Good documentation and communication skills
• Ability to work within a team and support team members
• Good analytical and problem-solving skills in order to identify and respond to unexpected or disruptive events

Beneficial

• Experience or knowledge of Azure Defender for Cloud or Sentinel
• System Administration experience (Linux/Windows)
• Management of Firewalls/Network Security
• Ability and willingness to learn Cloud Security technologies
• Any experience in scripting (KQL, C#, Powershell)
• Any knowledge of cybersecurity standards and frameworks e.g. ISO27001, NIST, CIS, OWASP, SOC2