Junior Cloud Security Engineer

IHS Markit
Apply HereJob ExpiredView More Jobs
IHS Markit

Junior Cloud Security Engineer

Cloud Security
Jul 8

Your role 

Reporting to the global head of cloud security at IHS Markit, your work will focus primarily on AWS with a secondary focus on VMC, Azure and/or GCP as needed. You will mentor and guide junior members of the cloud security team and partner with stakeholders across information security and other IHS Markit organizations to deliver solutions that harden IHS Markit’s cloud security posture.


Emphasis will be on the following objectives: 

·       Creating security automation for response and remediation of compliance findings and hardening of AWS and VMWare Cloud on AWS (VMC) environments primarily, and Azure or GCP secondarily

·       Onboard corporate and open-source security tools into build pipelines including SAST, DAST, TVM and anti-virus tools using Cloud native and open-source tooling and create custom tooling where needed to fill in gaps

·       Partner with the cybersecurity operations center (CSOC), offensive security operations and threat intelligence teams to onboard new services for the purpose of detection and predication of events


Your expertise 

·       0 – 2 years of experience of cloud security engineering on AWS 

·       Basic understanding of security requirements, best practices and execution in various cloud implementation scenarios: IaaS, PaaS, SaaS 

·       Basic understanding of Lockheed Martin’s Kill Chain or MITRE ATT&CK 

·       Basic understanding and exposure to automation using scripts and CI/CD pipelines with cloud native or open-source technologies 

·       Basic experience with a scripting language such as Bash or Python 

·       Basic understanding of Windows and Linux platforms in the lens of investigations, configuration management and patch management 

·       Knowledge of Google Cloud Platform (GCP) or Microsoft Azure security concepts in a secondary capacity is strongly desired, but not required 

You are 

·       A naturally curious self-starter - you can deliver on requirements with some limited guidance or supervision, as needed by you and the team 

·       A relentless learner - you actively seek to add to your skillset and knowledge base while challenging the status quo to drive efficiency in the team 

·       Strong interpersonal skills – you can communicate with a wide range of technical and non-technical teams 

·       Insist on the highest standards within the team and actively share your perspectives with the team and the larger information security organization 


What we offer: 

·       Access to the most interesting information technologies 

·       The ability to implement your own ideas and solutions 

·       Participation in conferences and training for Information Security qualifications 


Flexible Working  

We pride ourselves on our agility and diversity, and we welcome requests to work flexibly. For most roles, flexible hours and/or an element of remote working are usually possible. Please talk to us during the interview about the type of arrangement that is best for you. We will always try to be adaptable wherever we can and in accordance with local and regional practices.   

Apply Here
After clicking on the button to apply above, you will leave Cyberlinx and go to the job application page (outside the site) for that company. Cyberlinx accepts no liability or responsibility as a consequence of any reliance upon information on their (external sites) or here. Cyberlinx does not own the logos from employers or jobs posts