2 of 2 Principle of Least Privilege Jobs in the South East

to join our dynamic team. The successful candidate will play a critical leadership role in delivering complex technical programs and driving key cyber security initiatives, particularly in the areas of Authentication, Identity and Access Management (IdAM), and overall access governance.This role will collaborate closely with cyber security, engineering, and business stakeholders, ensuring the delivery of secure, modern platforms … objectives with broader enterprise technology goals. Cyber Security and IdAM Partner with Cyber Security stakeholders to design and implement secure authentication mechanisms (e.g., MFA, SSO). Drive the rollout of identity governance solutions and ensure integration with enterprise-wide access management systems. Ensure all programs comply with security best practices, regulatory requirements (e.g., GDPR), and internal security policies. Oversee … IT Service Management, and business units. Translate strategic cybersecurity objectives into clear technical requirements and roadmaps. Collaborate with the Retail Tech and Business Change teams to enable secure rollout of new store and enterprise features. Technical Execution Ensure agile delivery of high-quality, secure solutions using Scrum, SAFe, or other scaled agile frameworks. Guide transitions from legacy systems More ❯

Perimeter Security: Establish platform perimeter security by implementing controls at ingress and egress points, including creating and maintaining an edge network with a Web Application Firewall (WAF), Distributed Denial of Service (DDoS) protection, and a Content Delivery Network (CDN). Access Control: Establish an access control baseline focusing on the principle of least privilege and … segregation of duties. Monitor and enforce these controls once roles and permissions are set. Security Controls: Design, implement, and maintain security controls to prevent, detect, and remediate insecure configurations, including defining and disseminating secure AWS/infrastructure baselines. Standards Development: Own the development and maintenance of tailored security standards and guidelines, creating reusable resources for various development teams. … AWS Security Services: Establish and manage AWS security services, including certificate authorities, encryption services, insecure configuration scanners, and security control canaries. Key requirements: Essential: 5+ years of experience in cloud security, particularly with AWS, and at least 2+ years in software development. Strong understanding of cloud and application security concepts, including secure coding practices, threat modeling, vulnerability More ❯