Verita HR Polska is created by professionals with an innovative approach to recruitment and a passion for new technologies (entry number in register: 5694). We provide services in the field of human resource management projects - including recruitment services at all levels of management, employer branding and outsourcing. We are currently looking for a candidate in the following role:
Azure Cloud Security Architect
Seeking an Azure Cloud Security Architect to collaborate across all organizations to identify, deliver, and document the required artifacts to enable movement of applications and data to the cloud, including strategy, technical roadmaps, position statements, concepts, and logical specifications. The Cloud Security Architect will be hands-on, directly interacting with the engineering and application development teams and provide leadership to drive alignment on security requirements, influence decision makers, build relationships, and communicate strategy and architecture to the broader internal community.
;Provide a detailed understanding of cloud security and cloud infrastructure services, Threat landscape and attack scenario’s, Risks.
;Possess significant breadth across other disciplines (e.g., enterprise security architecture, compute services, storage, large-scale networking, virtualization, data center, integration architecture (API), orchestration technologies (Kubernetes, Docker, open stack), systems resiliency, service support, Secure application development lifecycle management (DevSecOps), and service delivery).
;Lead through influence, communicate effectively through clarity of thought and demonstrated understanding of business and technical requirements.
;Be a strong technologist with pragmatic view and creative mind, and a natural collaborator with line of business security architects, engineers, developers, application owners, service providers, and senior management.
7+ years of hands-on experience
;BS in Computer Science, Software Engineering, Computer Engineering, or equivalent experience.
;Master's degree in Information Security or similar technical field
;Industry certifications: GIAC, CISA and/or CISSP, CSSLP
;Certified Kubernetes Administrator (CKA) or Microsoft Certified: Azure a plus.
;Experience with the assessment, implementation, management and documentation of a broad set of information security technologies and processes (e.g., app security, data protection, access management, network security) within a cloud environment
;Experience working with Azure platform cloud security management / governance tools, Cloud Access Security Brokers (CASB), cloud services and 3rd party hosted services, and server virtualization products and technologies
;Experience designing cloud security solutions, including creating artifacts, models, and strategy presentations
;Experience with service-oriented architecture for cloud-based services
;Solid understanding of the end-to-end information technology (IT) process, including architecture, design & engineering, implementation, and operations
;Experience performing security design reviews to assess security implications for introduction of new or differing technologies within the environment
;Ability to provide direction and guidance on architectural use cases and requirements
;Knowledge of Cloud Platform technologies, including how to design, deploy, configure and secure applications and services on Cloud Platforms.
;Well versed in Cloud provider APIs, Python, Terraform, Docker, Kubernetes, Kubernetes security, container orchestration, network policies and access controls and security services.
;Knowledge of Container technologies, Kubernetes Orchestration and Managed Kubernetes Platforms (GKE, EKS and AKS), including how to design, deploy, configure and secure container images and containerized applications/microservices.
;Past experience with infrastructure tools such as Terraform, Packer, Ansible and Vault.
;Understanding of the various threat vectors that are relevant to container and managed Kubernetes platforms and the security controls that address those threats.
;Proven experience securing cloud software, platforms and/or infrastructures
;Hands-on experience as an engineer or architect with public cloud technologies to include Amazon Web Services (AWS), Microsoft Azure and/or Google Cloud Platform.
;Ability to analyse large volumes of data and pinpoint statistically significant patterns related to cyber threats.
;Ability to identify network attacks and systemic security issues as they relate to threats and vulnerabilities, with focus on recommendations for enhancements or remediation
;Knowledge of key information risk management, controls and security related standards including OWASP, ISO2700x series, PCI DSS, GLBA, EU data security and privacy acts, FFIEC guidelines and NIST standards.
;Knowledge and technical understanding of common network protocols such as TCP, UDP, DNS, DHCP, IPSEC, HTTP, etc. and network protocol analysis suits.
;Knowledge and technical understanding of common cybersecurity technologies such as; Kubernetes, IDS / IPS / HIPS, Advanced Anti-malware prevention and analysis, Firewalls, Proxies, MSS, Cloud secrets management, encryption and key management, etc.
;Knowledge and technical understanding of common operating systems and platforms to include; Windows, Linux, UNIX, Oracle, Citrix, GSX Server, iOS, OSX, etc.
;Knowledge of Threat Intelligence tools and processes, with the ability to build and sustain a program in support of the Cyber Intel Operations team.
;Responsible for defining Scrum/Agile project working approach and mentoring all team members to follow the same methodology.
;Well versed in SCRUM, Kanban, Confluence and JIRA, including JIRA board administration.
;Knowledge of and skilled in the scripting, programming and/or development of bespoke tooling or solutions to solve unique problems.
Contact with top IT technologies available in the market.
;Employees’ benefits: Multisport Card, private medical and dental health care, life insurance,
;Free parking space for our employees – few minutes from the office,
;Internal training events and workshops,
;Realistic career progression opportunities in an international organization,
;Commutable office location – Kapelanka street,
;Casual dress code,