Our client, an international maritime organisation is seeking a Senior Analyst focusing on Cloud Security and DevSecOps. This role is focused on securing the continuous upgrade of their cloud infrastructure across the business.
This is an exciting opportunity to be part of the Global Information Systems & Security (GISCS) CUK Team, responsible for assessing and managing IT risks in line with global IT policies and standards. You will primarily focus on maintaining the security posture of cloud environments and traditional on-premise IT systems. The role is integral to supporting the company's digital transformation programme.
Key Responsibilities:
- Develop, implement, and manage security controls in the development lifecycle of digital platforms
- Ensure code updates and changes are approved for release into production cloud environments following corporate policies and standards
- Analyse data from security control systems to provide management information and security insights
- Produce accurate and timely reports on security control status, highlighting concerns and submitting risk forms as necessary
- Engage with IT project, development, and implementation teams across the Technology department
Job Requirements:
- Experience in IT cyber security, including cloud services and operational technology
- Strong understanding of regulatory control requirements such as GDPR, PCI DSS, SOX, and IMO
- Proficiency in information security policy and governance frameworks
- Knowledge of software development lifecycle best practices and principles
- Experience with CI/CD, SAST, DAST, and other security testing solutions
- Skills in risk assessment, risk management, and third-party risk
If you possess experience in cyber security and cloud services and are looking for an opportunity to further develop your career in a challenging and rewarding environment, we would love to hear from you.