Cloud Security Architect

Equiniti is a leading international provider of shareholder, pension, remediation, and credit technology. With over 6000 employees, it supports 37 million people in 120 countries. EQ’s vision is to be the leading global share registrar, offering complementary services to its client base and our values set the core foundations to our success. We are TRUSTED to deliver on our commitments, COMMERCIAL in building long term value, COLLABORATIVE in our approach and we IMPROVE by continually enhancing our skills and services.

EQ is currently in the process of migrating its applications and infrastructure into the Public Cloud (AWS). The Cloud Security Architect will work with the Head of Security Engineering to support this project and drive the design and deployment of secure services into AWS. This position requires deep knowledge and experience with AWS tools, capabilities, and resources, with a deep understanding of cloud-based infrastructure resources, monitoring tools, and advanced security controls.

Roles and Responsibilities

• Assist the Head of Security Engineering in the development and maintenance of a Cloud Security Architecture and Roadmap, jointly with the Group IT Technical Architecture team.
• Act as the EQ Technical Design Authority for the implementation of AWS security solutions.
• Lead the formulation and enhancement of cloud security controls across the EQ group infrastructure.
• Create and manage comprehensive security documentation and designs for technical and process controls.
• Play a key role in shaping EQ’s overall cloud security strategy, emphasising the integration of security in SDLC/build phases.
• Working directly with engineering teams to design and review system/data architectures through the development of secure patterns and principles.
• Collaborate with the business to develop readiness strategies to counter emerging cloud-based threats.
• Liaise with the Security Operations to ensure that suitable operational security processes are developed and delivered in a timely manner.

Job Specifications

• Significant public cloud (AWS) and hybrid cloud security architecture experience across multiple domains: Cloud, Network, Infrastructure, Application, Data, IAM.
• Implementation of controls aligning to Information Security and Privacy Standards and Frameworks (e.g. ISO 27001, CSA-CCM, NIST800-53, CIS, GDPR etc...).
• Expert knowledge of key Amazon cloud security technologies, including AWS: IAM, SSO, Organisations, Guard Duty, Security Hub, Inspector, Config, CloudTrail, Shield Advanced, WAF, Macie, Detective, Certificate Manager and Secrets Manager.
• Deep knowledge on AWS core components (examples: API Gateway, ECS, EBS, EC2, S3, SNS, Lambda, Security groups, VPC, CFT, Route 53, certificate manager, AWS build pipelines and AWS cloud trail).
• Familiarity with common cloud automation, management, and deployment tools such as Terraform, Jenkins, Ansible, Docker, Fargate, Kubernetes, etc.
• Extensive experience working within environments utilising DevSecOps, CI/CD, Infrastructure & Security as Code.
• Ability to effectively translate and accurately communicate security and risk implications to technical and non-technical stakeholders.

What We Offer

• Equiniti Pension Plan; Equiniti matches your pension contributions up to 10%.
• All Employee Long Term Incentive Plan (LTIP) – Gives all EQ Colleagues the opportunity to benefit if the current owners successfully sell the company for a profit.
• Employee Assistance Programme: counselling, legal & wellbeing support for colleagues and their households.
• Life assurance cover at 4x salary with the ability to purchase enhanced cover.
• Employee discounts – Discounts and cashback at your favourite high street stores through our EQ Wins Platform.
• Flexible Benefits – The ability to purchase a wide variety of benefits through our flex plan; gadgets, travel insurance, will writing, holiday trading and more.
• 28 days holiday + bank holidays. 2 volunteer days to get involved with a charity of your choosing.
• Equiniti ICON award vouchers; recognising the individuals going above and beyond to help the business succeed.
• Investment in LinkedIn Learning for all colleagues.

We are committed to equality of opportunity for all staff and applications from individuals are encouraged regardless of age, disability, sex, gender reassignment, sexual orientation, pregnancy and maternity, race, religion or belief and marriage and civil partnerships. Please note any offer of employment is subject to satisfactory pre-employment screening checks. These consist of 5 year activity & GAP verification, DBS or Access NI, Credit, Sanctions & CIFAS checks.