At a Glance
- Tasks: Secure and enhance our cloud infrastructure while embracing DevSecOps practices.
- Company: Join Cint, a leader in research technology with a vibrant tech culture.
- Benefits: Competitive salary, great perks, and opportunities for professional growth.
- Other info: Collaborative team atmosphere with exciting challenges and career advancement.
- Why this job: Make a real impact on cloud security in a fast-growing tech environment.
- Qualifications: 3+ years in Cloud Infrastructure, AWS expertise, and a passion for automation.
The predicted salary is between 70000 - 90000 £ per year.
Cint is a pioneer in research technology (ResTech). Our customers use the Cint platform to post questions and get answers from real people to build business strategies, confidently publish research, accurately measure the impact of digital advertising, and more. The Cint platform is built on a programmatic marketplace, which is the world's largest, with nearly 300 million respondents in over 150 countries who consent to sharing their opinions, motivations, and behaviours.
Our vision for the role is to find an experienced Senior Cloud Infrastructure Security Engineer with a passion for automation and DevSecOps methodology. You'll be working with a team of engineers to build out and secure our expanding cloud infrastructure in AWS. This is a hands-on engineering position, requiring confidence and gravitas to influence engineers and managers across a wide technical function. The team holds itself accountable to a high standard of build quality.
We have recently completed the first major phase of a completely green-field infrastructure and platform rebuild designed to underpin Cint’s business applications for the next decade, while scaling to support a 10-fold growth in revenue. We are committed to infrastructure as code and driven to achieve a full end-to-end continuous deployment pipeline. Major elements of our platform include AWS (S3, RDS, Kinesis, EC2, EMR, ElastiCache, ElasticSearch, EKS) and will expand into GCP (Compute Engine, Cloud Storage, Google Kubernetes Engine, BigQuery). Other significant tools include Linux, Terraform, Kubernetes, Docker, Packer, Ansible, and Jenkins. We support applications and services written in Golang, Python, Java, Scala, and .Net. Monitoring and alerting are conducted via Grafana, Prometheus, Graphite, and ELK stacks.
You will share our values and ambitions, bringing security best practices and specific cloud security expertise. You should be energised by complex challenges, teamwork, and problem-solving. In return, we offer a great tech culture, highly competitive compensation packages, and employment benefits.
QualificationsResponsibilities:
- Work as part of the Infrastructure team defining and improving our general security posture across legacy and green field resources including data, applications, and networks.
- Provide point of expertise on application, data, and network security to our wider engineering teams, ensuring consistent adoption of security policies and best practices.
- Participate in the automation of software to our cloud platform and embed security into our methodology, embracing DevSecOps.
- Improve our monitoring and alerting systems to enhance them with specific and relevant security data points.
- Participate in an on-call rotation and assist with troubleshooting issues that arise.
- Define and implement a Security Incident Response process/policy with regular evolvement, testing, and adherence.
- Three years or more experience in Cloud Infrastructure roles (predominantly AWS) working within teams that practice DevSecOps.
- Ability to interact comfortably with AWS via CLI and/or API.
- Proficient in managing Infrastructure exclusively with Terraform.
- Specific expertise in threat assessment, attack surface management, data security, the network stack at L4 and L7, DNS, VPC security, IGW, WAF, and CloudFront.
- Experience designing and managing IAM policies, roles, and trust policies.
- Good knowledge of VPN, MFA, SAML, OAuth2, KMS, and TLS.
- Good knowledge of IdP (Okta, OneLogin, Auth0) frameworks and integrations.
- Experience building and running Docker images/containers securely, including container orchestration security.
- Experience in code security audit, static and dynamic analysis, defensive programming techniques, and visualisation and measurement of security KPIs.
- Expertise in at least one scripting or programming language (Python, Bash, Ruby, Node, Golang, Java).
- Plays well with others - we build and ship as a team.
- AWS Certified Security Specialist.
- Hands-on experience designing and implementing security controls within GCP.
- Experience defining and operating a Security Incident Response process.
- Good knowledge of monitoring and alerting using one or more of: Graphite, Statsd, Prometheus, Grafana, OpenSearch.
- Any experience of ISO27001 certification processes.
- Understanding of "cloud native" and 12-Factor applications.
- Offensive or defensive penetration testing experience.
Senior Cloud Security Engineer in London employer: Cint AB
Cint is an exceptional employer that fosters a vibrant tech culture, offering competitive compensation packages and comprehensive employment benefits. As a Senior Cloud Security Engineer, you'll thrive in a collaborative environment where your expertise will directly influence the security posture of our cutting-edge cloud infrastructure. With a commitment to employee growth and a focus on innovative practices like DevSecOps, Cint provides a unique opportunity to tackle complex challenges while contributing to a platform that supports significant business expansion.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Cloud Security Engineer in London
✨Tip Number 1
Network, network, network! Get out there and connect with people in the industry. Attend meetups, webinars, or even just chat with folks on LinkedIn. You never know who might have a lead on your dream job!
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to cloud security and automation. This gives potential employers a taste of what you can do and sets you apart from the crowd.
✨Tip Number 3
Prepare for interviews by brushing up on your technical knowledge and soft skills. Practice common interview questions, but also be ready to discuss your past experiences and how they relate to the role. Confidence is key!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Senior Cloud Security Engineer in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Senior Cloud Security Engineer role. Highlight your experience with AWS, Terraform, and DevSecOps practices. We want to see how your skills align with our needs!
Showcase Your Projects:Include specific projects where you've implemented security measures or automated processes in cloud environments. This gives us a clear picture of your hands-on experience and problem-solving abilities.
Craft a Compelling Cover Letter:Your cover letter should reflect your passion for cloud security and automation. Share why you're excited about joining Cint and how you can contribute to our tech culture and security posture.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen on joining our team!
How to prepare for a job interview at Cint AB
✨Know Your Cloud Security Inside Out
Make sure you brush up on your knowledge of AWS and GCP security features. Be ready to discuss specific tools like IAM policies, WAF, and VPC security. The interviewers will want to see that you can confidently navigate the cloud security landscape.
✨Show Off Your DevSecOps Passion
Since this role is all about integrating security into the development process, be prepared to share examples of how you've implemented DevSecOps practices in previous roles. Talk about your experience with automation and how you've embedded security into CI/CD pipelines.
✨Demonstrate Team Collaboration Skills
Cint values teamwork, so highlight your ability to work well with others. Share stories of how you've influenced engineers and managers in adopting security best practices. Show that you can communicate complex security concepts in a way that everyone can understand.
✨Prepare for Technical Challenges
Expect some technical questions or scenarios during the interview. Brush up on your scripting skills and be ready to tackle problems related to threat assessment or incident response. This will show that you're not just knowledgeable but also hands-on and ready to jump into action.
