As one of our Security Engineers, you will join a multidisciplinary team, working together with other Security Engineers, Product Managers and Security teams. You will design, build and deliver secure, high-quality enterprise solutions across numerous initiatives within the organisation, spreading your security knowledge to an ever-expanding engineering community, increasing our security posture and helping identify and reduce our risk exposure.
You will bring subject-matter expertise around Cloud Security to the team. You will be responsible for the design, implementation, and maintenance of our organisation’s cloud-based security systems. As a Cloud Security Engineer, you will need to have a thorough understanding of complex IT systems and stay updated with the latest security standards, systems, and authentication protocols, as well as various cloud services and resources.
Responsibilities
- Design, develop, and deploy scalable cloud-based security solutions.
- Perform vulnerability testing, risk analyses, and security assessments against our cloud environment.
- Develop and coordinate cloud security procedures and disaster recovery plans.
- Build a deep understanding of our cloud security tooling and drive improvements in coverage and utilisation of the tools.
- Collaborate with Security Operations, Threat & Vulnerability Management and software development teams to ensure cloud solutions are securely integrated with new and existing software and infrastructure.
- Support with conducting security training and awareness programs to educate staff about cloud security risks and responsibilities.
- Maintain compliance with all relevant security and privacy laws and regulations.
- Articulate mitigation and development techniques around emerging threats to technical and non-technical stakeholders
- Work with other Security Engineers on collaborative projects and deliverables that support other Security & Fraud functions and business needs.
About You
- Proven experience in a cloud computing environment (Azure, AWS, GCP)
- Strong understanding of cloud architecture and security principles
- Experience with security tools and technologies such as Wiz, Sentinel, Microsoft Defender Suite, Azure, Kubernetes.
- Knowledge of regulatory requirements and industry standards related to cloud security.
- Knowledge of Infrastructure-as-code (IAC) and an understanding of misconfigurations.
- Experience building applications, scripts, pipelines or automation using modern technologies and languages such as PowerShell, YAML, Python, C#, Java, Docker, Kubernetes
BeneFITS’
- Employee discount (hello ASOS discount!)
- ASOS Develops (personal development opportunities across the business)
- Employee sample sales
- Access to a huge range of LinkedIn learning materials
- 25 days paid annual leave + an extra celebration day for a special moment
- Discretionary bonus scheme
- Private medical care scheme
- Flexible benefits allowance - which you can choose to take as extra cash, or use towards other benefits
Why take our word for it? Search #InsideASOS on our socials to see what life at ASOS is like.
Want to find out how we’re tech powered? Check out the ASOS Tech Podcast here https://open.spotify.com/show/6rT4V6N9C7pAXcX60kzzxo . Prefer reading? Check out our ASOS Tech Blog here https://medium.com/asos-techblog.
