Cloud Security Specialist
Gdańsk, PL, 80-309
Nordea
Nordea is a leading Nordic universal bank – we are a strong and personal financial partner with financial solutions that best meet your needs so you can achieve your goals and realise your dreams.Job ID: 23719
Would you like to join our cloud team? We are now looking for a Cloud Security Specialist to design robust security controls and enhancing our overall security posture within the AWS and Azure cloud environment.
At Nordea, we know our customers’ needs are changing – and we’re deeply committed to meeting them with the financial solutions of tomorrow. We’re creating an agile environment where we’re harnessing the power of technology – one where you can make an impact. So bring your skills, ideas and unique background. With us, you’ll find plenty of opportunities to grow and make your mark on something bigger.
About this opportunity
Welcome to the Cloud Engineering and Operations team. We are seeking a highly skilled AWS and Azure Cloud Security Specialist to join our dynamic team. The ideal candidate will play a pivotal role in designing robust security controls and enhancing our overall security posture within the AWS and Azure cloud environment. The candidate should possess a strong background in cloud services, compliance standards, and hands-on experience in implementing security measures.
What you’ll be doing:
-
Conduct thorough Security Control Policy (SCP) and Identity & Access Management (IAM) reviews, and provide recommendations for enhancements.
-
Evaluate and propose hardening controls for Cloud platform, ensuring a secure and resilient infrastructure.
-
Gain a thorough understanding of the organization’s security guidelines and control objectives related to cloud platforms.
-
Participate in risk assessment and provide recommendations for mitigations identified risks.
-
Demonstrate expertise in compliance standards, particularly with CIS benchmarks, to ensure alignment with industry best practices.
-
Utilize Cloud Security Hub to support security operations, identify potential threats, and implement proactive security measures.
-
Proficient in writing code using Terraform and CloudFormation to create and manage security controls within AWS Config or Azure Policy and other relevant services.
-
Collaborate with cross-functional teams to integrate security measures into the DevOps pipeline, promoting a secure-by-design approach.
Stay abreast of the latest security trends, vulnerabilities, and AWS/Azure services to continuously improve security strategies.
You’ll join a team where cloud platform is significantly growing, and you get plenty of opportunities to add value to the team by exploring and applying skills. The role is based in Warszawa; Gdańsk; Gdynia; Helsinki; Stockholm; Łódź.
Who you are
Collaboration. Ownership. Passion. Courage. These are the values that guide us in being at our best – and that we imagine you share with us.
To succeed in this role, we believe that you:
- Extensive experience in designing and implementing security controls within AWS and Azure.
- Strong knowledge of AWS and Azure services, particularly AWS Security Hub and Azure Policy.
- Proficiency in scripting and coding using Terraform and CloudFormation for automated control deployment.
- In-depth understanding of compliance standards, specifically CIS benchmarks.
- Excellent communication skills to articulate security concepts and recommendations effectively.
- Proven ability to work collaboratively in a team environment.
If this sounds like you, get in touch!
Next steps
Submit your application no later than 08/05/2024.
For more information, you’re welcome to contact Anand Gundanna at anand.gundanna@nordea.com.
At Nordea, we know that an inclusive workplace is a sustainable workplace. We deeply believe that our diverse backgrounds, experiences, characteristics and traits make us better at serving customers and communities. So please come as you are.
Please be aware that any applications or CVs coming through email or direct messages will not be accepted or considered.
Only for candidates in Sweden - For union information, please contact Finansförbundet at finansforbundet@nordea.se or SACO at SacoNordea@nordea.com.
Only for candidates in Poland - Please include permit for processing personal data in CV as following:
In accordance with art. 6 (1) a and b. Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) hereinafter ‘GDPR’. I agree to have: my personal data, education and employment history proceeded for the purposes of current and future recruitment processes in Nordea Bank Abp.
The administrator of your personal data is: Nordea Bank Abp operating in Poland through its Branch, address: Aleja Edwarda Rydza Śmiglego 20, 93-281 Łodź. Your personal data will be processed for the recruitment processes in Nordea Bank Abp. You have a right to access your personal data, right to rectify and right to delete. Disclosing the personal data in the scope specified by the provisions of Polish Labour Code from 26 June 1974 and executive acts are mandatory. Providing personal data is necessary to conduct the recruitment processes. The request for the deletion of your personal data means resignation from further participation in recruitment processes and causes the immediate removal of your application. Detailed information concerning processing of your personal data can be found at: nordea.com/en/doc/nordea-privacy-policy-for-applicants.pdf
We reserve the right to reply only to selected applications.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile AWS Azure Cloud Compliance DevOps GDPR IAM Privacy Risk assessment Scripting Terraform Vulnerabilities
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Security Operations Analyst jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs