CSF, OWASP SAMM), and compliance frameworks (SOC 2, ISO 27001, GDPR). Secure SDLC & DevSecOps - Build and maintain guardrails for static/dynamic analysis, container and IaC scanning, SBOM management, and supply-chain security; automate enforcement through CI/CD pipelines. Cloud & Infrastructure Security - Design and implement robust controls for AWS (primary) and Azure/GCP (secondary): IAM, network … segmentation, KMS, secrets management, WAF, EDR, and zero-trust patterns. Identity & Access Management (IAM) - Own enterprise IAM strategy, including RBAC, least-privilege provisioning, SSO, federation (OIDC/SAML), and privileged-access workflows. Monitoring, Detection & Response - Define audit logging, metrics, and telemetry requirements; integrate with SIEM/SOAR to deliver actionable alerts and playbooks for engineering-led incident response. … on software teams, especially for ISO27001 and SOC2. FedRAMP experience advantageous. Demonstrated experience performing threat modelling, penetration test scoping, and vulnerability management. Deep understanding of IAM concepts, encryption/key-management, and secure network design. Excellent communication skills with ability to translate technical risk to non-technical stakeholders. Preferred, but not essential Certifications such as CISSP, CSSLP, AWS More ❯
to join their Enterprise Technology team. This hands-on role will focus on uplifting Ansible usage, enhancing automation workflows, and improving infrastructure security and reliability across a Linux environment. Key Responsibilities: Refactor and optimise Ansible playbooks and roles for maintainability, security, and robustness Improve pre-checks, conditional logic, error handling, and reporting Integrate with secret management systems such … as CyberArk and Ansible Vault Enhance Ansible inventory management and automation scheduling Build reusable templates for ad-hoc tasks and remediation Develop automation for CIS compliance and reporting Contribute to Molecule testing environments for Ansible roles Collaborate with Linux, Infrastructure, and InfoSec teams Essential Skills & Experience: Expert-level understanding of Ansible Core and CLI Strong background in Linux systems … engineering and automation Proven track record of writing secure, idempotent, and testable playbooks Experience with secret management tools (e.g. CyberArk, Ansible Vault) Knowledge of Linux patch management, system hardening, and CIS compliance Strong problem-solving, documentation, and communication skills Desirable: Experience with Molecule testing for Ansible roles Familiarity with Ansible Automation Platform (AAP) Understanding of SSH keyMore ❯
with SIEM, IDS/IPS, firewalls and endpoint protection. Nice to haves Extensive experience in designing, implementation, maintenance and review of security controls (in areas of Identity and Access Management, Network Security Design, Application. Security, Security Monitoring, Cloud (Azure/AWS/GCP) and hybrid environments). Experience in implementing Zero Trust principles. Experience in threat modelling and conducting … risk assessments. Deep knowledge of encryption, key management. Certified in TOGAF/SABSA We are offering We offer you the opportunity to be the best you can be and lots of room to grow personally and professionally; The opportunity to pro-actively work on your vitality and fitness;A great atmosphere with enthusiastic and driven colleagues; And the chance More ❯
