Job Description
Job Description
Job Purpose (Job Summary): Were seeking top talent passionate and provide technical expertise in the maintenance and support of the company's Cloud SAAS Applications and Information security department. Identify and resolve issues, improve system security and search for security improvement opportunities. Additionally, maintain and follow all relevant procedures and documentation, reviewing and updating where required.
Your Team
Our Information Security department is to protect Invesco's information and Information assets from all internal and external, deliberate, or accidental threats. The information security team will protect data from unauthorized access while maintaining the confidentiality, integrity, and availability of information. In addition, designing and maintaining the Security Policies and Standards while adhering to legislative and regulatory requirements, providing information security training for all employees, and ensuring the business continuity of Invesco.
Your Role:
Design and implementing, managing, and monitoring security measures to protect our SaaS applications and the data of our customers. You will work closely with cross-functional teams to ensure our cloud security practices meet industry standards and comply with relevant regulations. As a SAAS Security Specialist, the individual will be a member of the Global Information Security team ensuring that Invesco's landscape is secure.
You Will Be Responsible For:
- Develop and implement security strategies, policies, and procedures for SaaS applications.
- Monitor and respond to security incidents, vulnerabilities, and threats in the cloud environment.
- Defining technical security requirements related to cloud workloads that require integration with IAM, Security Groups, Data and Information Protection, CI/CD pipelines, Kubernetes, Security Information Event Monitoring (SIEM) systems integration, and others
- Researching and designing current and future cloud security solutions to improve compliance with NIST Framework and Cloud Security Alliance guidance by working to identify common patterns for template provisioning
- Developing and deploying infrastructure as a code scripts to implement and optimize security controls and mechanisms of a cloud infrastructure
- Supporting cloud projects, tactical initiatives and provide hands on implementation of various security technologies & processes with focus on cloud security. Support key business and tech projects related to Cloud Transformation.
- Providing appropriate support activities such as patches, upgrades, break fix and improvements
- Providing appropriate cloud security engineering and support activities such as patches, upgrades, enhancements
- Providing metrics and periodic updates on various projects assigned
- Investigating, documenting, and reporting on information security issues and emerging trends related to cloud environments globally
- Optimize existing automation solutions for performance and reliability.
- Staying updated with the latest technologies and tools in automation and continuously improving skills.
Other
- Attend scheduled meetings with Team Lead/Department/Town Hall representation
- Become familiar with company methodologies
- Actively participate with Team Lead in creating personal development plan
- Provide the Team Lead with ideas to enhance or improve team processes and procedures and ensure agreed procedures are followed
- Attend scheduled training sessions
- Administrative activities time sheets/compliance requests
The Experience You Bring: Work Experience / Knowledge: 0 - 2 years experience in an information security role, supporting security programs and security engineering/architecture in complex enterprise environments 0 - 2 years of hands-on experience designing, configuring, and implementing enterprise-wide Cloud security solutions across AWS, Azure, Oracle and other major cloud providers, including microservices security 1 year practical experience working in DevSecOps team with applied Agile development methodology Experience with cloud deployment orchestration, automation, and security configuration management Proficiency in one or more scripting languages such as Python and Powershell, including JSON Experience with blueprints, patterns, and guidelines that standardize and accelerate organizational cloud adoption and align to industry compliance frameworks such as SOX, PCI-DSS, HIPAA, NIST, ISO, GDPR, SOC1/2, etc. Knowledge of various security methodologies and processes, and technical security solutions, such as Prisma Cloud, Wiz, Container security, McAfee CASB, SIEM (Qradar/Splunk), IAM, Virtual Palo Alto, and other workload protection and security solutions.
Inter-personal skills / Other attributes required: Strong problem-solving capabilities with an analytical, methodical approach Excellent verbal and written communication skills, including impressive email communication abilities. Can articulate complex technical issues in a manner understandable to non-technical individuals. Adaptable to working in a global, multicultural environment. Exhibits a structured, disciplined approach to work with keen attention to detail. Displays disciplined time management skills. Capable of multitasking and handling multiple initiatives concurrently. Self-motivated and proficient in working with minimal supervision. Responds positively under pressure to meet tight deadlines. Can work effectively both independently and as a collaborative team player. Thrives on challenging work and exhibits a strong desire to learn and advance. Formal Education: BTech in Computer Science or Bachelors degree in Computer Science
Disclaimer : This job posting has been aggregated from external source. Role details, content, and availability are subject to change. Applicants are advised to confirm the latest information directly on the company website before applying.No Referrers Available
There are currently no referrers available for this job. You can still apply, will let you know once there is any referrer available.
