Upstream Recruitment
Upstream are partnering with a leading Cyber Security business based in Dubai that works as a number 1 partner to many financial institutions across the UAE. Due to recently awarded projects, our client is looking for a Cloud Security Consultant. This will be a permanent role based in Dubai offering a salary between AED 20,000 – 25,000 per month.
Responsibilities
Encourage ‘Shift Left’ Mindset – Proactively embed security requirements, by influencing implementation of security & privacy patterns from the start of the development cycle
Implement via Influence – Influence stakeholders such as Product Owners, Solution Architects, Developers, Testers, Engineers & others to include security patterns into features, epics and stories in order to build secure, innovative & superior digital products for customers and employees
Assessments – Perform security assessment and perform gap analysis to provide appropriate remediations to the teams for implementing the fixes.
Key Skills – Application Security, Security Code review, API security, Platform security, IAST, SAST, DAST, Infrastructure security and Cloud Security – MS Azure
Tools and Technologies – Expertise in Azure Security Center and Azure Policies, Burp Suite, Nessus, Checkmarx, Kubernetes, Docker, Jenkins, GitHub, OpenShift and good knowledge about micro service architecture and pipeline driven security.
Qualifications
Must have minimum 4 years of experience in an information security function with good background in information technology, stakeholder management and people management
Minimum 3 years of experience, as a Security Engineer especially in Cloud Native environments
Deep foundational knowledge, understanding and application on all aspects of Information Security concepts from broad range of technical and non- technical areas (Technical)
Expert at the technology and frameworks in his/her area of expertise, and coach other architect on development standards and best practices.
Good understanding of enterprise level target architecture and public and private cloud platforms (IaaS/PaaS)
Good hands-on experience solutioning technology architectures that involve perimeter protection, core protection and end-point protection/detection & API /Micro services Security
Experience working in a DevOps environment with knowledge of Continuous Integration, Containers, DAST/SAST tools and building Evil Stories (Technical)