Cloud Security Engineer

Job Description

About Temenos Temenos powers a world of banking that creates opportunities for billions of people and businesses everywhere. We have been doing this for over 30 years through the pioneering spirit of our Temenosians who are passionate about making banking better, together. We serve over 3000 clients from the largest to challengers and community banks in 150+ countries. We collaborate with clients to build new banking services and state-of-the-art customer experiences on our open banking platform, helping them operate more sustainably. At Temenos, we have an open-minded and inclusive culture, where everyone has the power to create their own destiny and make a positive contribution to the world of banking and society. THE ROLE The Cloud Security Engineer will act as the most senior technical authority within the Cloud Security Operations team based in India. The role will ensure the security of our banking clients in public and private cloud as part of our SaaS banking services. The role will ensure that our cloud deployments and cloud infrastructure and associated services meets our cloud security standards including defining and maintaining security controls. The role is pivotal in ensuring that our client projects are deployed successfully to cloud with strong security posture. The role will support and interact with other Temenos teams both within and external to the Cloud Security global team including Cloud Operations, Cloud Architecture, Cyber Defence Centre, Information security, Regional Engineering teams, SRE, Product Security, SaaS Design and Build and our Compliance/Audit/Risk teams. This role may also require interfacing with our SaaS clients directly and the incumbent should be comfortable in such environments, being able to communicate confidently both verbally and in writing. OPPORTUNITIES You will Understand and contribute to cloud security architecture and design patterns. You will Review and validation of cloud security controls across public and private cloud infrastructure including Azure (essential) and AWS (desirable). Any other cloud security experience beneficial. You will Support the team by focussing on developing effective automation solutions to common, repetitive manual tasks, ensuring proper attention to quality and achieving positive business outcomes are achieved. You will Security solution advisory and consulting (e.g., integration with 3rd party systems, architecture reviews, documentation of security processes) You will Support Cloud security operations including security alerts, incident, change control and reporting, aligning to Temenos SOC activities. Security assurance - vulnerability management, application security/cloud infrastructure penetration testing and managing associated remediation plans. You will Technical experience in cloud security services – network and storage encryption, key management, tokenisation, API security, micro services, firewalls, application gateways, network security groups, web security and identity and access management. You will Support the delivery of client projects in the region and collaborate on planning and execution activities requiring cloud security involvement. You will Conduct security assessments for cloud infrastructure and cloud service providers. You will Support internal and external audits, risk and compliance initiatives. You will Ensure cloud security standards and patterns are followed and adhered to You will Documentation and maintenance of cloud security standards and processes. Skills You should have At least 5 years’ experience in information/cyber security with recent cloud security experience. Proven experience in a senior technical/senior engineer/team lead role. MS Defender and Sentinel is mandatory. Oversight for more junior members of the team, demonstrated ability to coach, develop and mentor team members sharing technical skills and experience to develop team capabilities. You should Recent hands-on experience with securing cloud infrastructure in either Azure and/or AWS. You should Have hands-on security engineering experience and demonstrable ability to develop automation solutions where appropriate (e.g. scripting languages, python, KQL, powershell, azure policy, terraform etc). Any other development experience highly regarded. You should DevOps and automation experience to help manage transition to DevSecOps. You should Strong knowledge of common cloud security design patterns/frameworks. You should Good understanding of cloud technologies and associated deployment patterns. You should Good knowledge of WAF and Firewall technologies. You should Can communicate effectively both orally and in written format. You should Able to provide cloud security support to clients and operations in a fast-paced environment. You should Solid understanding of current and recent tactics/techniques and procedures for preventing common attack types Bachelor’s degree in Computer Science, Engineering or related discipline Desirable (knowledge/experience): You should Recognised industry certifications/qualifications in cloud/security e.g., CCSP, CCSK, CISSP etc. You should Cloud Security controls and standards (CCM, ISO, NIST, SOC2, MCSB etc.) You should Hands on experience in threat modelling security infrastructure and applications You should Previous experience in security incident response in a public cloud environment You should Experience in the banking, financial services, or security/intelligence industry You should Knowledge and experience in core and digital banking services, markets, and products You should Regulatory compliance knowledge and experience (GDPR, FFIEC, FINMA etc) VALUES Care You will be a caring leader who puts people first. Commit You will be comfortable committing time to the job when required – with flexibility to work to meet global demands. Collaborate You will be a consensus builder and a collaborator, able to break through challenges with organizational silos. Challenge You will not be happy with just meeting targets but always demonstrate a stretch mindset. Please make sure to read our Recruitment Privacy Policy Show more Show less