SC Cleared Security Lead (Cloud Native)

SC Cleared Security Lead within the Cloud native Services Team

The role holder provides technical advice and assistance to the sales force, sales agents, reseller/distributor staff

and existing or prospective customers, either in support of customer development or sales activity or in fulfilment of sales obligations. They are a competent design authority on larger or more complex solutions, demonstrating an understanding of the customers' business and commercial issues. They identify, design and deliver large or more complex architectures, strategies and specific solutions. The role holder may also manage a small/medium design team.

Responsibilities and requirements:

- Work closely with other architects\Engineers and developers in delivery of cloud native services and infrastructure

- Translate high level requirements into thoughtful and robust security innovation consumable by technical teams

- Design high quality, production-grade cloud native microservices that cover a broad range of security concern

- Able to create\develop and implement architectures for deployments in Azure and AWS

- Drive value by assessing multiple design strategies to provide the best solution to meet current customer goals on any given day

- Assist in maintaining architectural integrity and consistency across a growing and evolving set of services by develop agile stories that have a security context

- Help team members translate high level, complex infrastructure design into practical, code level service and component designs via NIST and CSA

- Knowledge of PCI DSS, SOX, CCPA, HIPAA, and general Infosec thinking and arbitration of issues

- Hold security certifications such as CISSP, CISM, SANS GIAC or similar

- Effective both as an individual contributor and lead of a collaborative, cross-functional teams

- High sense of ownership, urgency, and drive

- Effective both as an individual contributor and lead of a collaborative, cross-functional teams

- Understand the use of Risk management and or ISMS\RMADS type impact on approval of systems

Experience:

- 3 years of experience in being involved in building distributed / SOA / microservice-style and cloud-based application

architectures; production-grade services in Python, Java, Go, serverside JavaScript, etc.

- Expertise in cloud native application architecture, 12 factor, containers, and related technologies

- Strong understanding of core software security concepts such as Encryption, AuthN and AuthZ but not limited to

- Demonstrated experience working with other technical leads and architects in delivering high quality solutions

- Ability to see the bigger picture and incrementally drive architecture growth towards it

- Deep understanding of RESTful Interfaces, JSON, Synchronous and Asynchronous API design

- Deep understanding of technologies and patterns in building a highly scalable and fault tolerant system

- Strong DevOps toolchain experience: Git, CI/CD workflows (Jenkins, GitLab), Docker Repos, etc.

- Strong understanding of Linux/UNIX and Shell scripting

- Strong understanding with Container Management and orchestration such as Docker, Kubernetes, etc.

- Good understanding and experience in Agile/Lean projects SCRUM, KANBAN etc.

- Experience working in a team environment; ability to learn from your peers and accept criticism

- Excellent documentation and communication skills around highly technical topics

- Self-starter, capable of working without direction and able to deliver from scratch

Key Accountabilities

• Authority. Complete responsibility for technical input to qualification and business approval meetings, designing larger more complex solutions. Shapes technical proposals to be commercially acceptable to the customer and may make solution/service trade-offs.
• Cost and risk. Defines the approach to larger/more complex solution development and acceptance testing, controlling technical scope and the work of the design team in order to ensure an acceptable cost structure.
• Influence. Represents the Company at customer forums, conferences, and professional bodies to build the Company's reputation in the market place.
• Business development. Establishes customer requirements for a solution building strong relationships and acting as a major influence in the customer choosing the Company.
• Requirements and design. Contributes to definition of customers' overall IT architecture, designing new solutions of significant size and complexity, and can manage the work of specialists contributing to the design and implementation.

Project People is acting as an Employment Business in relation to this vacancy.