At Vodafone, we put our customers at the heart of everything we do to give Australians more choice and freedom to connect the way they want.
As our Cloud Security Lead, you will be responsible for analysis of the security posture, identifying the key risks and communicating the impact to the stakeholders. This role is required to help infrastructure and application teams embed security controls, governance and practices into the management and delivery pipelines to ensure adherence to security compliance and policies. With the ever increasing risk of cyber threats, this role plays a key part in building and uplifting the organisation’s security posture and defenses at scale. improvement and automation.
Responsible for developing the cloud security strategy and outlining the roadmap for its implementation and roll out across the cloud environments
Design and implementation of key cyber security controls and defense against threats in cloud environments
Collaborate with Digital and IT stakeholders and personnel to drive the development and uplift of security culture
Define and measure key security metrics and assess the maturity of the security posture
Provide consultancy to different technology and IT asset owners to ensure effective identification and mitigation of key risks
Develop a vulnerability management process for aggregation, triage, escalation and assist in remediation of security findings which sits within the wider TechSec policy framework
Develop and communicate a threat modelling framework appropriate for the Vodafone Public Cloud IT ecosystem
Help with development and testing of active and passive monitoring and alerting through effective usage of SIEM tools
Evangelise and advocate Public Cloud cyber security awareness and education initiatives across the organisation
Knowledge & Experience Requirements:
Software Engineering background with deep knowledge in Infrastructure technologies
A passion for maintaining high quality secure code, you keep up to date with security trends and share that information with your peers and business stakeholders
Strong knowledge & experience of security architecture principles and frameworks
Hands-on experience of agile and DevOps practices
Recent hands on experience of software development and or IT operations practices
Recent hands on experience of cloud technologies particularly AWS
Experience implementing and operating in an OWASP compliant environment
Excellent communication skills, you need to be able to talk tech with engineering teams but you also need to be able to clearly articulate risks and remediation approaches to your business stakeholders
With Vodafone, we are committed to attracting, developing and retaining the best people by offering a flexible, diverse and inclusive workplace where hard work is truly rewarded. You will have access to fantastic benefits as part of a global company, including generous leave policies, leadership development programs and opportunities to grow your career. You’ll be faced with loads of variety where no two days are ever the same in a collaborative work space that helps drive innovation.
When you sign up and create a LiveHire profile, your personal information will be collected in accordance with Vodafone's Privacy Collection Statement and LiveHire's Personal Information Collection Statement.