Logo of Huzzle

Cloud Security Manager

image

ASOS.com

25d ago

  • Job
    Full-time
    Senior Level
  • IT & Cybersecurity
  • London

AI generated summary

  • You need proven cloud security expertise, Azure Kubernetes Service experience, knowledge of security frameworks, Microsoft cloud security technologies, and DevSecOps knowledge for this role.
  • You will lead a team to secure cloud environments, develop security strategies, assess risks, enforce policies, and collaborate with cross-functional teams for ASOS.com.

Requirements

  • Proven experience in cloud security expertise
  • Azure Kubernetes Service (AKS) experience, alongside Kubernetes, Docker, policy as code and securing containers expertise
  • In-depth knowledge of security frameworks, standards, and best practices (e.g., ISO 27001, NIST Cloud Security Framework, CIS hardening and the CSA CCM).
  • Proven knowledge of service wrappers as they pertain to best practice around product/platform lifecycles
  • Experience working with Microsoft cloud security technologies, especially Sentinel, Defender and Purview
  • Experience working with other cloud security technologies and environments (e.g., AWS & GCP)
  • Application security/DevSecOps knowledge is preferable, especially when applied to a Secure Software Development Life Cycle (SSDLC) framework

Responsibilities

  • Lead a small team of cloud security practitioners, providing guidance, support, and mentorship to foster professional growth
  • Contribute to and implement an overarching cloud security strategy aligned with business objectives, industry best practices, and regulatory requirements.
  • Implement and maintain security controls and configurations for cloud-based environments, including but not limited to AWS, Azure, and Google Cloud Platform.
  • Conduct risk assessments and security audits to identify vulnerabilities, threats, and compliance gaps within our cloud infrastructure.
  • Develop a suite of metrics that allow the organisation to track vulnerabilities across multiple platforms and applications, while also tracking remediation progress and providing insight into key trends.
  • Develop and enforce cloud security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices.
  • Collaborate with cross-functional teams, including IT, DevOps, and development teams, to integrate security into the entire SDLC, cloud development lifecycle and cloud projects when needed.

FAQs

What are the key responsibilities of a Cloud Security Manager?

The key responsibilities of a Cloud Security Manager include supervising a team of security practitioners, implementing security technologies to protect cloud-based infrastructure, mitigating risks, ensuring compliance with industry standards and regulations, and preserving the confidentiality, integrity, and availability of information systems.

What skills are required to excel as a Cloud Security Manager?

To excel as a Cloud Security Manager, one should have a blend of technical expertise, stakeholder management skills, and communication capabilities. Additionally, knowledge of cloud security technologies, risk management, and compliance frameworks is essential.

How does a Cloud Security Manager contribute to protecting the company's assets and brand?

A Cloud Security Manager plays a pivotal role in ensuring the security and integrity of cloud-based infrastructure and services, thereby protecting the company's assets and brand. By implementing effective security measures, mitigating risks, and ensuring compliance, the Cloud Security Manager helps to preserve the confidentiality, integrity, and availability of information systems.

How does the role of a Cloud Security Manager evolve in response to changes in the security landscape?

The role of a Cloud Security Manager evolves in response to changes in the security landscape by staying up-to-date with emerging threats, technologies, and industry trends. The Cloud Security Manager must continuously assess and adapt security measures to address evolving risks and ensure the company's security posture remains robust and efficient.

Be whoever you want to be @ ASOS 🌟

Fashion & Arts
Industry
1001-5000
Employees
2000
Founded Year

Mission & Purpose

We exist to give people the confidence to be whoever they want to be, and that goes for our people too. At ASOS, you’re free to be your true self without judgment, and channel your creativity into a platform used by millions. Whatever your role, ASOS will encourage you to be you, fulfilling your creative potential with our global reach. Push boundaries, and challenge expectations. We’re determined to succeed, so we’ll trust you to deliver. Help drive our journey to becoming the global fashion destination for 20-somethings At ASOS our 3,000+ employees are immersed in the creative worlds and have a truly entrepreneurial attitude. Our ASOSers are authentic, brave, creative and disciplined to the core and find ways to blend our passion for fashion with cutting edge technology. Sound up your street? Join us.

Benefits

  • Employee Discount

    The most asked-about benefit! As an ASOSer, you’ll receive an exclusive employee discount. You can also nominate a family member or friend to share your discount with.

  • Pension

    Retirement might not be on your mind right now, but it’s important to prep for it. We offer matched contributions up to 5% to help you save.

  • Private Medical Care scheme

    If you join our Private Medical Care scheme, you’ll get fast and effective access to medical cover.

  • Bonus

    What we achieve is always a team effort. That’s why we offer a discretionary bonus scheme which rewards you based on the company performance and your individual performance.

  • Your birthday off!

    Who wants to work on their birthday?! All ASOSers get a day off during their birthday week, in addition to 25 days of annual leave.