Connecting...

Cyber Security Engineer – Cloud/DevOps- Luxembourg

Job Title: Cyber Security Engineer – Cloud/DevOps- Luxembourg
Contract Type: Contract
Location: London
Industry:
ICT
Salary: €500 - €660 per day
Start Date: After travel restrictions are lifted
Reference: EW/C/17021
Contact Name: Ellie Walker
Contact Email: ellie.walker@gsatechsource.com
Job Published: April 21, 2020 09:19

Job Description

GSA Techsource are currently working with an IT consultancy to recruit a Cyber Security Engineer to work with one of their end clients.

This role is based in Luxembourg, so will begin when travel restrictions are lifted. Initial 6 month basis with likely extension.

Main Skills:
  1. DevOps/Coding/Automation skills within IaaS and Containers
  2. At least a little incident response experience
  3. Having done ted teaming/pentesting – the ‘attacker mindset’ will be a valuable addition
  4. Having touched upon SOC work will be an advantage
Cyber Security Service Engineer to function as a Cyber Security Cloud Security and Automation Engineer. The engineer will need specific expertise in (as many as possible and as in-depth as possible):
  • Knowledge of and experience with the security elements of cloud offerings by Amazon or Microsoft, preferably both,
  • Knowledge of and experience with the security elements of container security using K8s/Docker,
  • Experience with cloud security automation and orchestration (IaaS, PaaS, and SaaS), including cloud solutions for security monitoring and incident response,
  • Experience with cloud platform integration with on-premise tools and services,
  • Solid and proven experience in scripting and automation, DevOps development experience would be an additional bonus,
  • Expert field knowledge of the technical elements around information system security in hybrid cloud environments,
  • Previous experience with incident response, pentesting, red-teaming and SOC will be considered an advantage.
The service provider is expected to contribute to the following activities:
  • Design or contribute to the implementation of security services in cloud, following the Commission's internal project management methodology,
  • Build, integrate, and automate cloud security services with on-premise/hybrid security services and tools,
  • Assist with the design, planning and architecture phases of cloud security services. This will most often take the form of contributing to ‘business case’ documentation outlining architectural options and SWOT analysis of options identified,
  • Participate to the designing of the overall cloud security architecture and reference architecture templates,
  • Drafting high to low level documentation in English, including regular project progress reports,
  • Participation in project-related activities including, but not limited to, preparation of presentations in project meetings, dissemination materials and cloud security best practices,
  • Contributing to a technical cloud security wiki.
The service provider may also be requested to provide consulting and security analyst services and may contribute to the evolution of services.

Work environment/conditions:

The work will be carried out in the client premises in Luxembourg. The service provider may be requested to participate in project meetings with the team’ services in Brussels.

The working language primarily is English, French is an asset.

Planning of activities and deliverables:
  • The contractor will produce periodic activity reports and a final report,
  • The expected mission’s start is as soon as possible.
Other precisions
  • Sound experience in projects that have successfully integrated cloud services to existing security services or automated cloud security service delivery,
  • Rapid self-starting capability and experience with working as part of a distributed team,
  • Ability to engage with technical experts but also to explain technical areas to non-technical people
  • Technical documentation and technical proposal drafting skills,
  • Competent communicator,
  • Customer and results oriented individual,
  • Good planner, able to follow more than one subject at a time,
  • Proactive attitude, communicative (i.e. good listener) and customer oriented.
Additional qualifications
  • Engineering or Computer Science university degree,
  • Completion of Amazon Security Operation in Cloud, SANS SEC545 or similar,
  • Sound experience in scripting and automation,
  • DevSecOps experience,
  • Experience securing on-premise cloud solutions will be an advantage,
  • Experience with both Splunk Enterprise and Enterprise Security Manager will be an advantage,
  • Experience designing and implementing security monitoring scenarios in cloud environments and building of playbooks to document these will be considered as a major advantage,
  • Experience working with IaaS in Azure or AWS, or with K8S will be a significant advantage.
Specific expertise (Mandatory Requirements)

The service provider must have a solid, proven specific expertise in:
  • Understanding of cloud-native technologies
  • Cloud security service automation
  • Kubernetes as a technology
The service provider must present a portfolio of own activities, projects and/or publications related to security service development and deployment and integration with cloud services.

GSA Techsource Ltd operates as an Employment Agency when recruiting for permanent vacancies, and an Employment Business when recruiting for contract vacancies. All contract rates quoted are to Ltd companies.