Cloud Security Specialist (RARR Job 5827)

We are seeking a skilled and motivated Cloud security SME to join our growing Cloud-Native Application Protection Platform (CNAPP) team in CTE. In this role, you be the critical link between business stakeholders (IT Service Owners, Cloud Service Team, Containers platform teams, Control and capability owners) and the CNAPP team to enable embedding CNAPP capabilities in the bank internal processes.

You will leverage your deep technical understanding of CNAPP capabilities (Vulnerability scanning, inventory, cloud security posture management, etc), DevSecOps practice, integration with data lakes for global reporting on security control to gather requirements and translate them into actional user stories and technical specifications aligned to the CNAPP team milestones.

Responsibilities

• Requirement gathering and analysis – by collaborating with stakeholders (Architects, cloud and containers engineer, capability leads, control owners) to capture and document functional and nonfunctional requirements.
• Serve as the subject matter expert for cloud and container security providing guidance on security controls design and execution.
• Define and prioritise epics within agile sprints - outlining the goal, completion criteria, and any dependencies – with enough technical details for an engineer to execute.
• Work closely with CNAPP engineering and other engineering stakeholders (Cloud services, Containers team, Cyber) to maintain traceability between business requirements, technical specifications and delivered features.
• Provide advice to stakeholders new to CNAPP on how to achieve their goals and support them with requirements elicitation.
• Conduct workshops and demos with key stakeholders to agree the design approach and to validate the solution – sign-off design and implementation.
• Define acceptance criteria to ensure requirements agreed with stakeholders are met.
• Map integrations and APIs between CNAPP solution components and systems e.g. downstream reporting, data lake integrations etc.

Knowledge, Qualifications & Experience

Technical Skill Set Required

• 5+ years’ experience as cloud security SME in cloud projects, security and compliance platforms (SaaS/On-premise).
• Hands on knowledge in cyber security vulnerability scanning, configuration baseline, compliance, inventory e.g. CNAPP, CSPM etc.
• Proven experience in Agile/Scrum environments writing epics, features, and user stories.
• Experience in Databricks or any equivalent data engineering platform is preferred.
• Excellent stakeholder management, facilitation, and communication skills.
• Experience with API integrations, microservices, and container orchestration (Kubernetes, AWS, GCP cloud) and DevOps processes
• Preferred familiarity with regulatory framework e.g. PCI-DSS, CIS benchmarks, etc.
• Preferred relevant certifications e.g. public Cloud (AWS, GCP)

Soft Skill Required

• Ability to work in fast paced environment and ever-changing priorities and having extremely flexible to manage workload.
• Able to support aggressive delivery timelines without compromising on quality.
• Quick learner
• Work with different stakeholders (Vendors, Project Manager, ITSO & ITSO Delegates, Support teams) & resolve all technical queries in timely manner.
• Excellent communication skills – both written and verbal (English)
• Proactive, collaborative, and self-motivated
• Ability to manage competing priorities and drive consensus