Applicants must be eligible to work in the specified location. Start Date ASAP.
Cloud Security Architect with GCP, CSO and Data Governance experience is required for a 6-month contract at a leading Bank based in London. As a Security Architect – Cloud Services, you will be responsible for ensuring the security and compliance of our cloud services, with a specific focus on GCP. You will lead the analysis and assessment of GCP cloud services against CSO (Cloud Security Operations), data governance, and cloud policies. In addition to identifying gaps and limitations, you will conduct thorough threat analysis and threat mapping exercises to proactively identify potential risks and vulnerabilities within the cloud services. Your role will involve providing comprehensive reports that outline the identified gaps, risk ratings, recommended mitigations, as well as the identified threats and their impact on the security posture.
INSIDE IR35
THIS ROLE IS HYBRID, 1-2 Days per week at the office in London
Responsibilities:
- Conduct a thorough analysis of GCP cloud services, evaluating their adherence to CSO, data governance, and cloud policies.
- Perform threat analysis and threat mapping exercises to identify potential risks and vulnerabilities within the cloud services.
- Identify gaps and limitations within the services and prepare comprehensive reports outlining these findings, along with appropriate risk ratings and necessary mitigations.
- Collaborate with cross-functional teams to support the development of build-time and run-time guardrails to address identified gaps, limitations, and threats.
- Lead the development and implementation of security policies and guidelines to ensure the secure deployment and operation of GCP cloud services.
- Provide technical expertise and guidance to peers and stakeholders, influencing and directing them to ensure security best practices are followed.
- Stay up to date with industry trends and emerging technologies in cloud security, and threat landscape, and provide recommendations for continuous improvement.
Experience:
- Extensive experience in security architecture and design, with a focus on cloud services, particularly GCP.
- Strong understanding of CSO, data governance, and cloud security best practices.
- Proficiency in analysing and assessing cloud services against security policies and standards.
- Experience in conducting threat analysis and threat mapping exercises to identify potential risks and vulnerabilities.
- Experience in developing and implementing security policies, guidelines, and guardrails for cloud environments.
- Knowledge of Scripting languages (eg, Python, PowerShell) is highly beneficial.
- Excellent leadership skills with the ability to lead, influence, and direct peers and stakeholders.
- Strong communication and presentation skills to effectively convey complex security concepts to technical and non-technical audiences.
- Relevant certifications such as CISSP, CISM, CCSP, or GCP certifications are highly desirable.
