Cyber Security Engineer – Cloud / DevOps

Job Title: Cyber Security Engineer – Cloud / DevOps
Contract Type: Contract
Location: Luxembourg
Salary: €600 - €660 per day
Start Date: 2020-05-01 00:00:00
Reference: AEJ / 17021
Contact Name: Anya Jones
Contact Email:
Job Published: April 20, 2020 16:37

Job Description

Cyber Security Engineer – Cloud / DevOps - Luxembourg - 6 months - €600 to €660 per day

GSA Techsource are currently working with an IT consultancy to recruit a Cyber Security Engineer to work with one of their end clients. This role is based in Luxembourg and is initially 6 months. 

Main Skills: 
  1. DevOps/Coding/Automation skills within IaaS and Containers
  2. At least a little incident response experience
  3. Having done ted teaming/pentesting – the ‘attacker mindset’ will be a valuable addition
  4. Having touched upon SOC work will be an advantage
Cyber Security Service Engineer to function as a CyberSecurity Cloud Security and Automation Engineer. The engineer will need specific expertise in (as many as possible and as in-depth as possible):
  • Knowledge of and experience with the security elements of cloud offerings by Amazon or Microsoft, preferably both,
  • Knowledge of and experience with the security elements of container security using K8s/Docker,
  • Experience with cloud security automation and orchestration (IaaS, PaaS, and SaaS), including cloud solutions for security monitoring and incident response,
  • Experience with cloud platform integration with on-premise tools and services,
  • Solid and proven experience in scripting and automation, DevOps development experience would be an additional bonus,
  • Expert field knowledge of the technical elements around information system security in hybrid cloud environments,
  • Previous experience with incident response, pentesting, red-teaming and SOC will be considered an advantage.
The service provider is expected to contribute to the following activities:
  • Design or contribute to the implementation of security services in cloud, following the Commission's internal project management methodology,
  • Build, integrate, and automate cloud security services with on-premise/hybrid security services and tools,
  • Assist with the design, planning and architecture phases of cloud security services. This will most often take the form of contributing to ‘business case’ documentation outlining architectural options and SWOT analysis of options identified,
  • Participate to the designing of the overall cloud security architecture and reference architecture templates,
  • Drafting high to low level documentation in English, including regular project progress reports,
  • Participation in project-related activities including, but not limited to, preparation of presentations in project meetings, dissemination materials and cloud security best practices,
  • Contributing to a technical cloud security wiki.
The service provider may also be requested to provide consulting and security analyst services and may contribute to the evolution of services.

Work environment/conditions:

The work will be carried out in the client premises in Luxembourg. The service provider may be requested to participate in project meetings with the team’ services in Brussels.

The working language primarily is English, French is an asset.

Planning of activities and deliverables:
  • The contractor will produce periodic activity reports and a final report,
  • The expected mission’s start is as soon as possible.
Other precisions
  • Sound experience in projects that have successfully integrated cloud services to existing security services or automated cloud security service delivery,
  • Rapid self-starting capability and experience with working as part of a distributed team,
  • Ability to engage with technical experts but also to explain technical areas to non-technical people
  • Technical documentation and technical proposal drafting skills,
  • Competent communicator,
  • Customer and results oriented individual,
  • Good planner, able to follow more than one subject at a time,
  • Proactive attitude, communicative (i.e. good listener) and customer oriented.
Additional qualifications
  • Engineering or Computer Science university degree,
  • Completion of Amazon Security Operation in Cloud, SANS SEC545 or similar,
  • Sound experience in scripting and automation,
  • DevSecOps experience,
  • Experience securing on-premise cloud solutions will be an advantage,
  • Experience with both Splunk Enterprise and Enterprise Security Manager will be an advantage,
  • Experience designing and implementing security monitoring scenarios in cloud environments and building of playbooks to document these will be considered as a major advantage,
  • Experience working with IaaS in Azure or AWS, or with K8S will be a significant advantage.
Specific expertise (Mandatory Requirements)

The service provider must have a solid, proven specific expertise in:
  • Understanding of cloud-native technologies
  • Cloud security service automation
  • Kubernetes as a technology
The service provider must present a portfolio of own activities, projects and/or publications related to security service development and deployment and integration with cloud services.

GSA Techsource Ltd operates as an Employment Agency when recruiting for permanent vacancies, and an Employment Business when recruiting for contract vacancies. All contract rates quoted are to Ltd companies.