09 Jun, 2022

Cloud Security Engineer (m/f)

  • Next Gate Tech
  • Luxembourg
Full time (permanent contract) Programming / IT

Job Description

We are looking for a passionate Security Engineer to design, develop and maintain secure workloads and infrastructure. This profile plays an important role to ensure that the entire application is secured and remains secure at all times. The potential for impact is substantial, as you work proactively on designing and developing tools within a diverse set of cyber security disciplines. As a Security Engineer you will act as a central point of contact between the Security Operations and Oversight Manager, the Cyber Security Specialists and our excellent team of Quantitative Developers, Financial Engineers and other Software Engineers.

Main responsibilities

  • Architect and build secure solutions for the entire infrastructure and workloads, including deployments and release pipelines
  • Collaborate with the Security Operations and Oversight Manager to ensure that all information security principles (e.g. NIST, ISO, …) are respected and implemented
  • Act as a subject matter expert by providing guidance on secure infrastructure-as-code and architecture reviews
  • Drive cyber security engineering awareness across the organization
  • Manage and configure accesses for users and applications (e.g. IAM, Service Accounts, Credential Management, …)
  • Collaborate with the Infrastructure Ops Engineers on designing and configuring network elements and perimeter controls (e.g. IAM, Firewalls, Identity Aware Proxies, Access Context Manager, as well as configuring security properties of a VPC network (e.g. VPC peering, Shared VPC)
  • Setup, configure, analyze or develop tools to monitor and remediate vulnerabilities across the entire application and network infrastructure (e.g. Security Command Center, SIEM, Security Health Analytics, Event Threat Detection, Container Threat Detection, Web Security Scanner, …)
  • Participate in and support the incident detection and response process by building observability and alerting where required and assisting the incident response team
  • Perform internal pentests (white, grey and black) to identify and remediate vulnerabilities using industry tools

 

Your profile 

Required

  • Bachelor’s degree in a technical discipline
  • Previous experience in an embedded (Cloud) security position
  • Familiarity with cyber security best practices. Any knowledge of frameworks such as Cyber Essentials, CIS Control or ISO27001 is desirable
  • Strong familiarity with one or more Cloud providers (e.g. GCP, AWS, Azure…)
  • Familiarity with (Cloud) security concepts such as Access Management, Least Privilege Principles, Vulnerability Detection Tools and Monitors
  • Familiarity with Pentests 
  • Knowledge of Terraform or other type of IAC tools is a plus
  • Knowledge of Networking concepts and Virtual Private Cloud
  • One or more relevant Qualifications are desirable (e.g. Cloud Security Engineer, Cloud Devops, Cloud Network, …)
  • Experience with scalable networking technologies (e.g., load balancers, firewalls, etc.) and web standards (e.g., REST APIs, web security mechanisms, etc.) 
  • Experience in system administration tasks in Linux or Unix, with familiarity with standard IT security practices (e.g., encryption, certificates, key management, etc.)

Soft skills 

  • Strong organizational skills and detail-oriented
  • Effective communication skills in order to engage with diverse stakeholders and present information concisely
  • Fluent in English

 

We offer

  • An exciting and dynamic work environment at the cutting-edge of its industry
  • An entrepreneurial spirit with the ability to make a direct and strong impact with new ideas
  • The ability to work at the intersection between two very promising and fast-growing fields, Finance and Technology
  • Flexibility and independence in work organization and schedule

Next Gate Tech is an equal opportunity employer