Home
Jobs
Amazon Web Services (AWS)
Security Engineer II, Industry Products - Fixed

Security Engineer II, Industry Products - Fixed

On site

London, United Kingdom

Full Time

04-03-2025

Share this job:

Score my CV Apply

Job Specifications

Description

As part of the AWS Solutions organization, we have a vision to provide business applications, leveraging Amazon’s unique experience and expertise, that are used by millions of companies worldwide to manage day-to-day operations. We will accomplish this by accelerating our customers’ businesses through delivery of intuitive and differentiated technology solutions that solve enduring business challenges. We blend vision with curiosity and Amazon’s real-world experience to build opinionated, turnkey solutions. Where customers prefer to buy over build, we become their trusted partner with solutions that are no-brainers to buy and easy to use.

Help us protect not only the Amazon Web Services (AWS) cloud computing environment but all of our customers as well! Since 2006, our great team at AWS has been enabling our customers to bring great ideas to life in ways that aren’t possible in traditional IT environments. With AWS you can flexibly harness compute, storage, security, and other services from across the globe as your business demands them.

AWS Security is on the cutting edge of security for a wide variety of platforms and technologies including cloud services, Internet of things (IoT), identity and access management, mobile devices, virtualization, and custom hardware, all operating at massive scale. Similarly, our highly collaborative team is committed to each team member’s growth as our business grows.

AWS Security is looking for a Security Engineer to design security controls and help validate that our services, applications, and emerging technologies are designed and implemented to the highest security standards. You will be responsible for analyzing the security of applications and services, discovering and addressing security issues, building security automation, articulating the security posture of a service, and decisively taking action to mitigate emerging threats throughout a full secure development life-cycle (SDLC).

This role will provide career growth opportunities as you gain new security skills in the course of your work. Security engineers at AWS have an opportunity to experiment, learn, build tools, and work with teams building new technology and services at massive scale. Security engineers at all levels have the opportunity to learn from and be mentored by those who are building and securing our cutting-edge services. A security engineer is also expected to be a mentor for others and be a trusted security advisor within the organization.

A security engineer at Amazon is expected to have technical expertise in multiple domains and provide significant contributions to the AWS Security team and to multiple groups throughout Amazon. Security engineers are expected to develop elegant solutions to complex security risk problems and apply appropriate technologies while following security engineering best practices.

A security engineer should demonstrate strong Amazon leadership principles. This role requires the ability to foster constructive dialogue and seek resolution when confronted with differing viewpoints on security risks. Engineers in this role are expected to participate fully in the planning of the AWS Security team's work and constantly seek opportunities for process improvement.

You will need a combination of troubleshooting, technical, and communication skills. An AWS Security engineer must have the ability to take ownership and deliver on multiple complex objectives which may include project and software development work.

Key job responsibilities

Your responsibilities will include: - Security reviews for new products, technologies, and services

Secure design, architecture, and implementation

Secure development life-cycle (SDLC) practices including threat modeling and security testing

Influence decision-makers and stakeholders to achieve a consistently high security bar

Conduct network and/or application penetration testing

Create security guidance and documentation

Develop security tools and automation

Develop and deliver security training and outreach to internal development teams

Lead security projects (including security reviews, tool development, and creation of new security practices) with end-to-end ownership

Support for mentoring, team building and recruiting activities

Our team puts a high value on work-life balance. It isn’t about how many hours you spend at home or at work; it’s about the flow you establish that brings energy to both parts of your life. We believe striking the right balance between your personal and professional life is critical to life-long happiness and fulfillment. We offer flexibility in working hours and encourage you to find your own balance between your work and personal lives.

About The Team

Why AWS

Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating — that’s why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.

Diverse Experiences

Amazon values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

Work/Life Balance

We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve in the cloud.

Inclusive Team Culture

Here at AWS, it’s in our nature to learn and be curious. Our employee-led affinity groups foster a culture of inclusion that empower us to be proud of our differences. Ongoing events and learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences, inspire us to never stop embracing our uniqueness.

Mentorship and Career Growth

We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.

Basic Qualifications

Bachelor's degree in computer science or equivalent
Knowledge of networking protocols such as HTTP, DNS and TCP/IP
Experience programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language

Preferred Qualifications

Experience with any combination of the following: threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security
Experience with programming languages such as Python, Java, C++
Experience applying threat modeling or other risk identification ...

About the Company

Launched in 2006, Amazon Web Services (AWS) began exposing key infrastructure services to businesses in the form of web services -- now widely known as cloud computing. The ultimate benefit of cloud computing, and AWS, is the ability to leverage a new business model and turn capital infrastructure expenses into variable costs. Businesses no longer need to plan and procure servers and other IT resources weeks or months in advance. Using AWS, businesses can take advantage of Amazon's expertise and economies of scale to access ... Know more

Related Jobs

Company Name: Cyber Nexus
Job Title: Senior Information Security Consultant
Job Description: About the Company - This is a great opportunity to join an exciting start up cyber security company providing digital resilience, security assessments and standards. This is an exciting opportunity to be the first consultant to join the organisation and play a key role in the growth and help shape the offerings to their customers. They specialise in implementing ServiceNow’s IRM product to improve their clients security posture. With a particular focus on Policy & Compliance, Risk Management, Third-Party Risk Management, Privacy Management. About the Role - Lead cybersecurity consultancy engagements, including risk assessments, compliance audits, and security architecture reviews. Provide expert guidance on frameworks such as ISO 27001, NIST, NIS2, DORA, Cyber Essentials, GDPR compliance and EU AI Act. Develop and implement tailored cybersecurity strategies. Conduct cybersecurity gap analyses, remediation planning, and security programme development. Serve as a trusted advisor to clients, understanding their security challenges and business objectives. Communicate cybersecurity risks, recommendations, and remediation strategies effectively to both technical and non-technical audiences. Assist with identifying opportunities for expanding cybersecurity services and contribute to business growth initiatives. Support the development of proposals, statements of work, and service offerings. Responsibilities -Proven experience in cybersecurity consulting, risk management, or compliance roles. -Strong knowledge of security frameworks, regulations, and best practices (e.g., ISO 27001, NIST, NIS2, DORA, CIS, Cyber Essentials, GDPR, EU AI Act). -Experience in conducting risk assessments, security audits, and implementing security controls. -Excellent communication, and project management skills. -Ability to translate complex cybersecurity concepts into business-relevant recommendations. -Relevant cybersecurity certifications (CISSP, CISM, CISA) are desirable. -Experience implementing a security / GRC platform / Tool. Such as ServiceNow IRM

Company Name: Figment
Job Title: Senior DevOps Engineer, New Networks
Job Description: You could work anywhere. Why Figment? Figment powers the future of Web3 through industry-leading blockchain infrastructure. As the leading provider of staking solutions, we help 500+ institutional clients optimize their crypto rewards, including top exchanges, asset managers, wallets, foundations, custodians, and major token holders. Our clients trust Figment for a comprehensive suite of services, including reward optimization, cutting-edge API development, detailed rewards reporting, seamless partner integrations, governance support, and slashing protection. Backed by a team of passionate and intelligent Figmates, with a 100% remote-first global presence across 12 countries, our company is on a mission to accelerate the adoption, growth, and long-term success of the Web3 ecosystem. We’re building the infrastructure that will power the decentralized future. As a fast-growing tech company, we’re looking for builders and innovators — people who thrive in the face of uncertainty and are motivated to make an impact. We are also looking for true teammates - people who are genuine, humble, and driven to level up together. If you're excited to shape the future, contribute to an energetic company culture, and work at the cutting edge of blockchain technology, we want you to join our team and help us lead the charge! About The Opportunity We run 70+ blockchains here at Figment. Come help us onboard more! This is a full-time remote position, with team members in North America and Europe. We are seeking a Senior DevOps Engineer to help us scale out our operations by planning and implementing projects to manage fleets of blockchain servers. This role presents unique opportunities to be involved in building out tooling where none exists in the industry. You will build production systems that need to handle newer (sometimes alpha quality) blockchain software. You’ll need to consider all aspects of security, monitoring, maintainability, and stability. How You Will Make An Impact Lead the planning, testing, implementation, and management of projects to deliver scalable, maintainable, secure, and stable deployments across a variety of use cases Identify & implement solutions for common areas where automation can significantly increase our ability to manage all our infrastructure Identify areas of systemic risk & evaluate, propose, and implement solutions Manage and monitor cloud and physical servers across multiple global hosting services and data centres Automate blockchain software build, install, and management processes Perform Linux server administration, hardening, intrusion detection, and vulnerability scanning Debug complex distributed blockchains to help run them smoothly Identify tasks and processes that get stuck or move slowly and support the team in pushing them through Explain broad initiatives and vision to Engineering Leadership and Product Demonstrate technical expertise in multiple domains and act as a mentor to others on the team Who you are In-depth experience using Ansible (and similar tools) in environments with over 500 servers: Designing complex static and dynamic inventories, variable structures, and playbooks Writing custom Ansible roles from scratch, with advanced features such as Jinja2 templating, complex logic flows, dynamic roles/tasks, and handlers Ensuring idempotency & reusability, and following applicable best practices In-depth experience supporting Linux servers in large, highly secure, and highly available 24/7 environments Demonstrated experience working with blockchain nodes or very strong knowledge of the blockchain domain Deep troubleshooting expertise of complex application flows which span multiple clusters of systems - to quickly identify server, network, and application issues; and methodical approach to implementing, testing, and measuring changes to remediate issues Knowledge of common OS and application level settings to optimize system performance Experience with common system administration scripting languages such as Bash and Python In-depth experience creating well organized modules with Terraform to ensure reusable cloud provisioning automation Deep understanding of networking and security best practices Even better if you have Ansible role testing with Molecule (or similar tools) and Ansible module development experience Knowledge of, or experience with, Proof-of-Work and Proof-of-Stake decentralized consensus mechanisms used in blockchains Experience running applications on Kubernetes Experience creating CI/CD pipelines from scratch to automate infrastructure provisioning and deploy applications (GitHub Actions or similar tools) Experience with Hashicorp Vault or other secure storage tools Why You Might Be Excited About Us At Figment, we offer an exciting range of competitive benefits designed to support and empower every member of our team. These will be discussed with you during the interview process. We are a team of under 200 members, which allows for an impactful contribution from day one. We place a strong focus on personal career development to shape a role that fits your goals and interests. Your satisfaction and well-being matter to us, and we’re here to support your ongoing growth. Our culture is one of honesty, professionalism and risk taking in a high-growth environment. Our team members themselves recommend working at Figment - with an eNPS score of 54 (which is ranked as ‘great’!). We are also extremely proud of ranking as one of the top Web3 employers by Talent Titans. Compensation One of Figment’s core principles is “Making the Invisible Visible” - ensuring transparency and information sharing in all communication. Figment is committed to transparency regarding pay, benefits, and other compensation types for all internal roles as well as all roles being hired for. Compensation for this role will be disclosed during the interview process. Interview process At Figment, we try to go above and beyond in making sure that you have the best possible experience interviewing with us. We strive for a smooth, organized, and informative process. During your first Recruiter Call, you will be provided with more information about Figment, the position and what to expect for the rest of the interview process. Please be prepared to discuss why you are interested in joining Figment and what excites you about the position and company. As we go through the process, we work to make sure that you hear back from us in a timely fashion. If we decide at any point that we’re unfortunately not moving forward, we will give you feedback on why it was not a fit. We aim for the entire process to take around 2-3 weeks from initial screen to offer. There can be exceptions on either side of the bell curve here, but as a rule, that’s the time-frame you can expect. See here for Figment's Privacy Policy and California Employee Privacy Policy. At Figment, we have a thorough hiring process to verify the identity of all job candidates. This...

Company Name: Microsoft Power Platform Community
Job Title: Security Go-to-Market (GTM) Manager, UK
Job Description: Overview Security is Microsoft’s number one priority and in the era of AI, organisations need to enhance their security posture to prevent, detect and remediate AI-powered attacks and also govern their data to enable AI-powered business transformation responsibly. The Security Business Group team plays a fundamental role in Microsoft UK , setting the local Go-To-Market strategy for our Security products portfolio, advocating for our solutions, enabling our sellers and partners and orchestrating the execution of th e plan s . This particular role is focused on orchestrating our Enterprise execution, working close with the product-aligned GTM Managers to identify opportunities, design programmes , enable sellers and gather insights . We are looking for an experienced individual contributor in Sales Enablement or Go-To-Market. Someone with a passion for helping protect organisations against Cyber threat s and able t o translate cloud services strategy and objectives into clear, discrete, and executable plans for the UK . In this role you will analyse reports to understand our business health and identify focus areas. You will col laborate with other members of the team who look after specific products to develop a robust Sales Enablement plan and execution rhythm with stakeholders across Sales and Customer Success to achieve goals. You will also support the Security Business Group Leader consolidate insights and provide regular updates to local, regional and global leaders Our team mission is to s afeguard the UK's people, data, and infrastructure with the most trusted AI-powered end-to-end security, through simplification, collaboration and insights-led best practices. Microsoft is on a mission to empower every person and every organization on the planet to achieve more , s ecurely! Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. You can help us to achieve our mission. Responsibilities You will develop and execute business strategy across the business, and accept accountability for revenue and KPIs. You’ll also identify strategic priorities for stakeholders, consolidate insights, and help development programs drive sales and marketing. You will lead definition and orchestration of strategic go-to-market plans across the business, ensuring they support a One Microsoft approach. You’ll also build and land growth plans, lead a complex stakeholder map, and prioritize impact over activity. You will ensure business unit leads and subsidiaries can equip channels and sellers with the knowledge and resources they need, and ensure field and corporate leadership are aligned. You’ll also drive leadership by pursuing long-range white-space growth opportunities, and develop strategies that maximize performance across the business. You will ensure customers have hardware availability, while driving a pipeline of feedback from sales to the supply chain. You’ll also proactively drive capacity forecasting, coach deals on alternative services, and drive pipeline and sales enablement. Qualifications E xperience in Go-to-market execution or business planning, project management, sales operations, ro les collaborating across sales, marketing and partners teams. Domain experience in the Security or a related field which may be transferable for you to excel in this role. Proficiency working with data, analysing reports to extract insights that would support business decisions Outstanding communication skills , able to adapt styles for different stakeholder audiences (leadership, sales, marketing) simplify ing the complex and providing clarity Ability to lead without authority , influencing people in different parts of the organisation Curious and Entrepreneurial mindset , to naturally question, explore, agitate, and push the business forward. Tak ing risks, learn ing from failures, operat ing within ambiguity and at pace , defining new ways to overcome business challenges You must be legally authorised to work in “United Kingdom” to be eligible for this role. (Legally authorised = Has citizenship or has been granted a valid visa or work permit). Relocation expenses are not provided as part of this role. Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form . Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

London, United Kingdom

On site

Full Time

04-03-2025

Company Name: s1jobs
Job Title: Cyber Security Consultant - Risk
Job Description: This is an exciting opportunity to join our world class Consultancy arm, as a Cyber Security Risk Consultant, supporting the next phase of Cyberfort's growth. You'll be joining a culture of knowledge sharing and continuous learning with expert peers in Secure Architecture and Risk planning. We work across a number of sectors with a diverse client base. We aim to create an environment where everyone can reach their full potential. We work together, we are passionate, creative, and we embrace difference. In this role you'll work within our Consulting team, supporting new and existing clients across various sectors to define and implement security risk assessment and best practice solutions that match their requirements. You'll work in close partnership with clients to ensure the delivery of expert services by complementing their inhouse Information and Cyber Security resources combining expertise in information security, solution architecture and business advice. As a Security Consultant, you will be responsible for the identification of risks relating to Security Architecture, maintaining an awareness of published vulnerabilities and best practices across various platforms, especially cloud infrastructures. Working across the business and multiple technology platforms, you will play a key role in ensuring our clients make the best use of their existing technology and make proportionate, risk-informed decisions, ensuring protection of client assets and transformation of their security architecture. This role forms part of the wider Consultancy team and will work cross functionally with the Delivery Manager and others to support and assure project delivery through all phases of the agile workflow. As a team we're always looking to raise the bar, learn new things and incorporate new technologies and you will too! You'll share your knowledge with the team and the wider Cyberfort community, contributing to Group blogs and undertaking research related to technology enhancements. Responsibilities General Responsibilities: Have an excellent understanding of risk management and assessment principles and frameworks, such as ISO27005 and the NIST Cyber Security Framework Have achieved or be working towards membership of CIISEC and UK Cyber Security Council professional registration at either Chartered or Principal. Work with multi-disciplinary teams, helping to ensure that products are delivered in a secure manner that is aligned with the wider business risk appetite. produce informative and succinct reporting that clearly articulates any identified vulnerabilities, associated risks, controls and risk treatment activity. Facilitate workshops with the various Authority departments, to align with wider HMG transformational Security and risk management outcomes. provide accurate and pragmatic remediation/risk management guidance/advice. Have an understanding of risk assessment in and agile delivery environment Be skilled in workshop facilitation particularly with respect to risk identification and assessment. Exceptional team working ethic and interpersonal skills Good level of knowledge of the cyber security industry Have a good understanding of modern IT technologies and services, such as Cloud Computing, Mobile Computing, IT Security, Infrastructure technologies, Zero Trust and demonstrate an understanding of security architecture As a team we're always looking to raise the bar, learn new things and incorporate new technologies and you will too! You'll share your knowledge with the team, our clients and the wider Cyberfort community, contributing to Group blogs and undertaking research related to technology enhancements. To Be Great At The Role Customer focused and a strong verbal and written communicator. Possess strong hands on experience in reviewing project delivery plans relating to security systems evaluation of network and security technologies developing requirements for network and cloud security designs as well as hardware & software. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Possess awareness and understanding of HMG and NCSC Security policies, standards and guidance. Passionate in cyber security. Able to deliver training to end users. Motivated, self-directed and able to work in large and virtual teams. The Cyberfort Group is a community of 160+ passionate people united by one overall mission... to make the world safer, one business at a time. We are the "one-stop shop" for all things cyber and are working to build a centre of excellence for our customers by building an amazing place to work, learn and develop for our people. We work with a diverse range of clients, including large Governmental departments as well as other public sector organisations and businesses within the private sector. We're growing our business and our team through our continuous investment in developing technology and cyber capability; we aim to deliver innovation to our customers as fast as possible. Whether it's AI-driven ML-based threat intelligence or rapid start hybrid Cloud; our goal is to implement solutions that make us stand out in the market. If that sounds like you, we'd like to see...... Your CV Find your place at the Cyberfort Group - Our vision is to bring together technology, people, expertise, facilities and leaders in Cybersecurity to create capability that is second to none. We aim to create a workplace that leverages the expertise of people from a diverse range of backgrounds that are to be themselves, are celebrated for thinking differently and work together as one team. We know that a one size fits all approach to our recruitment and selection practices will not allow us to reach some of the incredible people that are out there and it's common practice for us to make adjustments. When you apply to work for us please let us know if there's anything we can do to allow you to showcase your skills and talents to the best of your ability.

Glasgow, United Kingdom

On site

Full Time

04-03-2025