Apply now »

Senior Cloud Security Engineer

Date:  21-Sep-2022
City:  London
Company:  GFT Technologies SE

Senior Cloud Security Engineer – L4


About GFT

As a pioneer for digital transformation GFT develops sustainable solutions across new technologies – from cloud engineering and artificial intelligence to blockchain/DLT. With its deep technological expertise, strong partnerships, and comprehensive market know-how GFT offers advice to the financial and insurance sectors, as well as in the manufacturing industry.


We have been recognised for our engineering excellence and work side by side with our clients in an agile way to solve their most challenging problems. Companies gain easy and safe access to scalable IT applications and innovative business models.


Who are we?

GFT are a modern company with a passion for technology that thrives on collaboration with our clients and celebrates success with our team.  We are an organisation that empowers you to not only explore but raise your potential and seek out opportunities that add value. You will work in a supportive environment with a diverse and inclusive team that is always learning and developing whilst working closely with our colleagues across the globe. Most importantly we care about people, cultures, and opinions, and show everyone equal respect.


Role Summary 

We are seeking a passionate cloud security technologist to join our rapidly expanding Cloud Security Consulting & Delivery team. You will join cloud security engineering teams assigned to client engagements to deliver cloud security solutions needed to support complex cloud-based applications. You will serve as a cloud security evangelist, visionary and consultant to provide technical guidance on cloud security architecture and engineering best practices.


Role Responsibilities

  • Join cloud engineering teams as the cloud security SME on client cloud engineering or specialist security projects
  • Provide thought leadership to steer solution design on client engagements and internal projects and by authoring technical and opinionated blogs, articles, and whitepapers
  • Identify emerging security technologies and evaluate suitability to improve client solution or bolster GFT offerings
  • Balance best of breed technical implementation with the commercial schedule and work within budget imperatives 
  • Influence, engage, develop, and manage stakeholder relationships on client engagements  
  • Promote GFT services and identify client opportunities
  • Participate in preparing client RFP/RFI responses and client proposals
  • Prepare and deliver articulate and effective presentations/workshops/demos of GFT cloud offerings in client pre-sales meeting and large audiences at events such as Google Next, AWS re:Invent, community Meetups and internal GFTedTalks and community events
  • Mentor junior engineers and peers with the opportunity to manage small internal teams
  • Assist with the recruitment process to expand the team to meet increasing demand
  • Maintain and expand deep cloud knowledge, industry trends, and best practices



Competencies and Skills Needed

Behavioural Skills:

  • An ability to apply structured thinking, simplifying complex problems into component parts, to the resolution of project challenges. 
  • Effective communication and interpersonal skills to be able to establish rapport with people at all levels. 
  • An eye for detail and accuracy, and an affinity with design issues and the ability to help establish and own a vision for our solutions. 
  • Organizational ability and tenacity; able to think ahead to establish an efficient and appropriate course of action for self and others. 
  • Take a proactive approach to work, good with handling uncertainty and can manage their work without close supervision. 
  • A strong sense of ownership and a desire to deliver quality outcomes for the business.


Technical Skills:

Some things to bear in mind:

  • Cloud security covers a wide gamut of skills and vendors - we use the interview process to see if someone will fit into a role even if they do not ‘tick’ all the requirements below.
  • We value the ability to gain a deep understanding of a cloud platform and then demonstrate that to our clients through good communication, intelligent reasoning and top quality engineering.
  • The security team is intentionally cross-cloud and our aim is to support other engineers across the company and on projects to deploy capabilities like infrastructure-as-code, secrets management, service meshes, PKI infrastructures and more in a secure and robust manner.
  • We recruit people who may be currently AWS or Azure experts – however, as 70% of our work is on Google Cloud, all new members of the team are supported to certify to GCP Professional level.

A suitable candidate would have most of the following attributes:

  • Solid cloud platform expertise ideally backed-up by a professional-level certification and/or security certification (e.g. Google Cloud PCA/PCSE, Azure AZ305/AZ500, AWS SAP/SCS)
  • A platform-neutral broad-based understanding of cloud security, audit and risk qualified by a neutral certification from CompTIA (Security+ or CySA+), CSA (CCSK or CCAK), or ISC2 (SSCP, CCSP or CISSP)
  • Familiarity with modern application architectures and cloud platforms, with an understanding of micro-service applications and the challenges of the migration or transformation of legacy applications
  • Practical knowledge securing cloud foundational services such as compute, network, storage, databases as well as build, deployment and operations
  • Applied knowledge of DevSecOps principles and automated security testing techniques and an appreciation of tooling choices
  • Involvement in assisting architects with the design of security services for hybrid environments including IAM, account/resource access policies, firewall rules and monitoring alerts
  • Experience implementing cloud-native secret management and encryption engine solutions, key-management, PKI and workload identity
  • Practical knowledge of container, Kubernetes and service mesh security - ideally with CKA or CKS certification, hands on Istio or Anthos experience and multi-tenant/multi-provider solutions
  • Applied knowledge of security products for threat detection & intelligence, workload protection, posture management, and SIEM/SOAR
  • Experience of frameworks for modelling adversarial behaviour (such as MITRE ATT&CK or STRIDE)
  • Experience hardening and assessing cloud resources following cloud vendor (well-architected frameworks and security blueprints) and neutral security guidance such as from NIST, CIS, and OWASP


What we offer you


You will be working with some of the brightest people in business and technology on challenging and rewarding projects in a team of likeminded individuals. GFT prides itself on its international environment that promotes professional and cultural exchange and encourages further individual development.


Founded in 1987 and located in 16 countries to ensure close proximity to its clients, GFT employs over 10,000 people. GFT provides our people with career opportunities in all areas of software engineering and innovation. The GFT Technologies SE share is listed in the Prime Standard segment of the Frankfurt Stock Exchange.



Apply now »