Lead Cloud Security Engineer
Share
Job Location:
Monthly Salary:
Posted on:
11 hours ago
Vacancies:
1 Vacancy
Job Summary
About us
Internet connected and smart home products are growing areas for Dyson where we aim to continue our reputation of being innovative and disruptive. Since our first launch of products in connected space we have grown fast to several millions of connected machines and we are envisioning a steep growth in 2026and beyond both in scale and connected features.
We want to build reliable scalable and secure services and features to support these increasing demands with innovative and competitive technologies in IoT Machine Data Lake Data Analytics and Machine Learning to support our vision.
We have a You build it you run it ethos and run all our services within Amazon Web Services (AWS). Our teamsare responsible forthe architecture development testing and operational support of their services in all environments. We are a global department with teamslocatedin the UK Singapore and China and we encourage flexible independent and innovative thinking in our engineers to deliver solutions.
Werebuilding world-class cross functional Agile teams to deliver our ambitious vision in the connected space.
If you thrive on working in a collaborative stimulating dynamic environment and relish difficult software engineering challenges thenwedlike to speak to you!
About the role
As a Lead Cloud Security Engineer in the Connected Cloud departmentyoullcollaborate with cloud development teams and engineers to secure our cloud native IoT platform associated tooling and deployed cloud services.
Inadditionyou willexplore innovative ways to improve our overall security posture and deal with common security challenges presented byourcloud workloads.
WeprimarilyleverageAWS to host and secure our services along with:
Cloudflare to protect our public facing endpoints
Azure DevOpsfor CI/CD orchestration
AWS OpenSearch/ELK Grafana for application monitoring
Palo Alto PrismaCloudfor compliance monitoring and adherence with cloud best practices
Veracode forSAST/SCAforscanningour cloud microservicesand containers
C#N and Pythonto create our services
Whatyoullbe doing:
Responsibleforpromotinggood security hygiene and bestpractices
Definingsecurityrequirements guidelines and policiesfor our engineersplatformstoolingand services
Workingalongside our Cloud teams supportingassistingand advisinghow todesign and build secure services and platforms
Identifyingand assessing our security risks threats and vulnerabilities andprovidea pragmatic approach for applying mitigation wherenecessary
Advocatinga shifting left mentalityto ensurepossible threatsor security issuesareaddressedearly within the development cycle
Working with the wider software teams to design and improve the security of our current and future products
Ensuringwecomply withregulatoryrequirementsand Dysonsecuritystandards
Identifyingnew technologies tools and approaches to help continually improve our security standards and quality
Act as point of contact for any security related queries or issuesand educate our engineers in security best practices
Investigate and mitigate security incidents and bug bounty escalations
What you need:
Experiencedinapplication security workflows in public cloud providers(e.g.AWS)
Some level of coding experience(in any language)
Experiencedin security tools for software development: SCA SAST CSPM CNAPP and secrets management.
Experiencedin cyber risk and vulnerability management for cloud native workloads common web-based connectivity for IoT and mobile devices
Experiencedwithsupporting audit activities hosted by internal or external parties.
Working knowledge of Web Application Firewalls ideally Cloudflare.
Working knowledge of Public Key Infrastructure andrelated operation activities
Working knowledge of data privacy frameworks/regulations like EUs GDPR & EU CRA specifically the responsibilities of a cloud service provider for mobile apps & IoT devices.
Working knowledge in cybersecurity frameworks like CIS or NIST.
Please apply if you:
Think this sounds fun
Wantto helpdrive security to the left
Like resolving complicated problems
Have experience with some of our technologies and tools
Have abackground ineither software development or securing solutions
Dyson is an equal opportunity employer. We know that great minds dont think alike and it takes all kinds of minds to make our technology so unique. We welcome applications from all backgrounds and employment decisions are made without regard to race colour religion national or ethnic origin sex sexual orientation gender identity or expression age disability protected veteran status or other any other dimension of diversity.
Key Skills
- Splunk
- IDS
- Network security
- Computer Networking
- Identity & Access Management
- PKI
- PCI
- NIST Standards
- Security System Experience
- Information Security
- Encryption
- Siem
About Company
Dyson vacuum cleaners, hair dryers, hair straighteners, hair stylers, air purifiers, humidifiers, hand dryers and lighting. Shop at Dyson.com for free shipping and warranty.
