Cloud Security Engineer

Job Description:

Are you ready to play a vital role in protecting UK citizens?

With 130,000 employees worldwide, DXC Technology is one of the world’s leading technology services providers. And we’re a diverse bunch; if you’re concerned you won’t ‘fit in’ at a global enterprise, we want to talk to you!

We’re focused on the future, so we keep our employees at the cutting-edge of their fields with personalized training programs. At DXC, you’ll find opportunities that match your efforts, and a team of good people to inspire you and recognize the important work you do.

Is it time you considered DXC for your next career move? Read on …

The role is to provide customer facing Infrastructure Security Advisory and Engineering Services to required quality criteria to DXC Security clients and DXC Technology as a whole.

Main Responsibilities

•    Management of existing cloud security native tools
•    Ownership of service requests related to cloud security tools
•    Incident escalation point for security analysts
•    Continuous improvement along with wider team as part of Centre of Excellence
•    Responsible for providing technical support in the creation and delivery of technology solutions designed to meet customers’ business needs and, consequently, for understanding customers’ businesses.  
•    As trusted advisor create and maintain effective customer relationships so as to ensure customer satisfaction.
•    Maintain knowledge of leading-edge technologies and industry/market domain knowledge.  
•    Frequently contributes to the development of new ideas/methods. 
•    Usually works on complex problems or projects where analysis of situations or data requires an in-depth evaluation of multiple factors. 
•    Regularly exercises significant independent judgment within broadly defined policies and practices to determine best method for accomplishing work and achieving objectives. 
•    Provides expertise to functional project teams and may participate in cross functional initiatives. 
 

Experience required:

We are seeking candidates with a minimum of 5 years' experience with either AWS or Azure cloud infrastructure, a demonstrable experience in modern DevSecOps/CloudOps practices, experience with cloud infrastructure monitoring, experience of working within controlled regulatory frameworks, and an 'automate everything' mindset.

Technical Skills:

• Proficient in AWS and Azure security services, features, and management tools.
• Understanding of each platform's native security controls and best practices.
• Experience with security tools specific to AWS and Azure, such as AWS Security Hub, Microsoft Defender for Cloud, and third-party tools like Palo Alto Networks, Tenable, etc. Experience and knowledge of CNAPP solutions.
• Knowledge of automated security scanning tools, intrusion detection systems, and firewalls.
• Experience of DevSecOps tools and processes, AKS and EKS and container security.
• Familiarity with CI/CD pipelines and related tools (e.g., GitHub, Azure DevOps).
• Understanding of infrastructure as code (IaC) using tools like Terraform and Ansible.
• Proficient in scripting languages such as Python, PowerShell, or Bash to automate security tasks and responses.
• Ability to develop and maintain automation scripts that integrate security into the CI/CD process.
• Understanding of Networking and Encryption in Cloud environments
• Strong understanding of network configurations, security groups, and Virtual Private Cloud (VPC) setups.
• Knowledge of encryption protocols and key management practices specific to cloud environments.
• Experience of working with JIRA, and Devops.

Technical skills or Experience in some of the following:

• AWS IAM access analyser
• AWS Inspector
• AWS WAF
• AWS Config
• AWS Guard duty
• AWS Cloud Trail
• AWS Cloud watch
• AWS KMS
• AWS Cert manager (ACM)
• Azure PIM / MFA
• Azure AD (Entra ID)
• Microsoft Defender for Cloud
• Azure WAF
• Azure policy
• Azure Key Vault
• Jira
• Confluence
• Cloud Formation
• Infrastructure As Code
• Terraform
• Dark Trace
• Palo Alto NGFW and Panaroma
• Tenable CNAPP

Additional Information:

•    Professional Accreditations/Certifications are preferred
•    This is a mobile role, travel compulsory
•    The candidate must hold a current driving license
•    Background Checking is needed with full financial check 
•    Needs to be eligible for Security Clearance 

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.