Cyber Security – Specialist Platform Security Engineer
Posted 1 day ago by Gazelle Global
Negotiable
Undetermined
Undetermined
London Area, United Kingdom
Summary: The Specialist Platform Security Engineer will be instrumental in safeguarding the integrity and security of platforms by implementing robust security measures and collaborating with cross-functional teams. This role involves providing strategic guidance for the secure adoption of various platforms and services, as well as technical consulting to mitigate risks. The engineer will also support secure design and integration of tools while promoting a culture of security within the organization. Additionally, the position requires assistance in identifying and remediating platform-specific vulnerabilities.
Key Responsibilities:
- Provide strategic guidance for secure adoption and use of SaaS & PaaS platforms and services.
- Conduct technical consulting to identify misconfigurations and reduce platform risk.
- Support secure design and integration of tools across business programs.
- Contribute to the implementation of platform security standards, policies, and baselines.
- Assist in identifying and remediating platform-specific vulnerabilities.
Key Skills:
- Solid understanding of Identity and Access security principles.
- Knowledge of security principles and architecture for databases and APIs.
- Understanding of Platform & Configuration Security, and Platform Monitoring.
- Scripting skills in Python and Bash for task automation.
- Familiarity with Terraform.
- Knowledge of security threats like DDoS, brute force, and exfiltration.
Salary (Rate): undetermined
City: London Area
Country: United Kingdom
Working Arrangements: undetermined
IR35 Status: undetermined
Seniority Level: undetermined
Industry: IT
Opportunity Cyber Security – Specialist Platform Security Engineer
As the Specialist Platform Security Engineer , you will play a pivotal role in ensuring the integrity and security of our platforms. You will lead the charge in implementing robust security measures, collaborating closely with cross-functional teams to fortify our defenses against cyber threats.
Essential skills/knowledge/experience:
- Solid understanding of Identity and Access security, including but not limited to least privilege, zero trust, authentication, authorisation, SSO, JWT, RBAC/ABAC/PBAC
- Solid understanding of security principles and architecture, particularly for databases and APIs
- Understanding of Platform & Configuration Security, and Platform Monitoring, Response and Governance
- Scripting (Python, Bash) for task automation
- Terraform
- Understanding of security threats like DDoS, brute force, exfiltration, spoofing, and other relevant threats
Your responsibilities:
- Strategic guidance for secure adoption and use of SaaS & PaaS platforms and services in the Microsoft, Google & Atlassian ecosystem, MongoDB Atlas, and other first-party platforms . The services include databases, API gateways, code repositories, integration services and others.
- Technical consulting to identify misconfigurations and reduce platform risk, helping raise organizational awareness of risks and best practices by participating in workshops, documentation efforts, and knowledge sharing
- Support for secure design and integration of tools across business programs, providing access & configuration reviews for the various platforms; contributing to the implementation of platform security standards, policies, and baselines under guidance from senior team members; building a culture of security by promoting automation, repeatable patterns, and consistent practices across teams
- Assistance in identifying and remediating platform-specific vulnerabilities.