Harrington Starr are supportin a global financial technology business who are bolstering their security team by hiring a Security Engineer with a focus on AWS security. This is part of a huge investment in cyber security from both a headcount and tooling perspective, with the ability to work on some cutting edge products.
A brief snapshot of the responsibilities in this role include:
- Design, implement, and maintain security controls across AWS environments.
- Configure, manage, and optimise AWS GuardDuty, including alert tuning, findings?triage workflows
- Lead cloud security monitoring, detection engineering, and the design of preventative controls.
- Incident response activities, providing technical expertise during investigations.
- Implement and manage cloud?native security services such as AWS Security Hub, IAM, CloudTrail, and VPC security controls.
- Work closely with DevOps and engineering teams to embed security within CI/CD pipelines and infrastructure?as?code practices.
- Conduct cloud security architecture reviews and perform threat modelling for new platforms and services.
- Support vulnerability management initiativeacross cloud and hybrid environments.
- Contribute to compliance programmes (including ISO 27001 and SOC 2)
- Continuously assess emerging cloud security threats and recommend improvements.
Key skills needed:
- Strong understanding of cloud security principles, with a focus on AWS environments.
- Practical experience deploying, configuring, and managing Amazon GuardDuty.
- In-depth knowledge of AWS IAM, networking components (VPCs, security groups, NACLs), as well as logging and monitoring solutions.
- Experience with cloud security posture management (CSPM) and vulnerability management platforms such as Wiz, Qualys, and Rapid7.
- Familiarity with infrastructure-as-code (IaC) and automation tools, including Terraform and CloudFormation.
- Solid grasp of security frameworks and regulatory standards, including NIST, CIS, ISO 27001, and GDPR.
- Proven ability to design and implement scalable security controls in dynamic, cloud-native environments.
The role is based in central London (city) with four days a week in the office.
