Cloud Security Architect

Award - The Best FinTech Trading Platform of The Year 2019.

Zeal group of companies (collectively Zeal Group) is a business portfolio of the parent company Zeal Holdings Limited, comprising regulated financial institutions and fintech companies specializing in multi-asset liquidity solutions in regulated markets backed by proprietary technology.

We are a people focused business and our team of 500+ professionals globally are dedicated to maximizing the success of our employees and customers. Headquarter is located in the UK with global presence in 12 countries across Asia, Middle East, & Europe with 22 offices internationally.

The estimated monthly trading volume in an average of USD 100B executed by 100,000 retail investors, professional traders, and financial institution clients.

Principal Accountabilities

• Perform risk assessments of proposed and existing system architecture for compliance with security best practices, recommending technical and administrative controls to mitigate identified risks
• Define, prioritize, and measure our efforts in achieving and maintaining cloud security in environments such as AWS, Azure, GCP and Kubernetes
• Design cloud security architectures and perform architecture design reviews
• Perform Cloud Security Controls Assessments and Compliance.
• Implement, maintain, and improve existing industry best practices of operational security controls such as:
• Audit mechanisms
• Vulnerability management
• Data classification
• Encryption and data security
• Develop and facilitate implementation of Disaster Recovery Plans
• Continually evaluate new threats in the cloud, to identify the impact on IT and Business to develop and implement security controls
• Draft and work with engineering teams to implement public cloud security requirements
• Draft and work with private cloud team to implement private cloud security requirements
• Ensure effective coordination between IT Security, DevOps, Network, Infrastructure and Development teams

• Contribute and develop best practices, guidelines, and documentation to be used in future projects. 

• Development and maintenance of the relevant architectural documentation regards security.

Key Competencies & Qualifications

• Excellent knowledge Kubernetes and Kubernetes like environments (stateless services, auto scaling, pod communication).
• Minimum of 5 years’ experience with public cloud (Amazon Web Services, Google Cloud Platform, Microsoft Azure, Alicloud). Ideally in a large financial institution or in a bank.
• Strong analytical, prioritizing, interpersonal, problem-solving, presentation, budgeting, project management (from conception to completion), & planning skills.
• Strong verbal and written communication skills (including analysis, interpretation, & reasoning).

• Strong foundations in software engineering, specifically at the architectural level.
• Strong knowledge of Infrastructure-as-Code and concepts related to automated infrastructure management using tools such as Terraform.
• Experience with SAST, DAST.
• Knowledge of cloud security best practices including Identity Access Management (IAM), network security, modern cloud security architecture, and platform specific security and governance tools
• Knowledge with Cloud Security (CSPM platform like Qualys, AquaSecurity, Orca)

• Understanding of Azure AD Conditional Access.
• Knowledge of DevSecOps practices
• Cloud security certification is a plus
• Ability to adapt to new technologies and learn quickly.
• Good English communication skills essential.

Package

• Bonus structure for each job role
• Paid 21 days of holidays per year and 10 additional days for national holiday
• Training opportunities for growth and expansion of knowledge
• Ability to work remotely
• Flexible and hybrid schedule – we value work-life balance
• Referral Bonus Program