Security Architect for IoT Cloud Security team
This job has now expired please search on the home page to find live IT Jobs.
Experienced security Architect to take ownership of security architecture for Dyson's connected cloud infrastructure from design to implementation.
In 2016 we launched our first two connected products and already have a connected user base of hundreds of thousands across twenty countries. By leveraging our culture of design and engineering excellence with an innovative start up mentality we won the 2016 T3 Connected product of the year, and our ambitions for 2018 and beyond are even more exciting. If you thrive on working in a collaborative, stimulating, fast moving environment and relish difficult software engineering challenges, then we want to speak to you!
You will be a key member of a growing cloud security team at Dyson focussed on IoT (Internet of Things) security. You will have graduated in a computing discipline and have significant security experience under your belt including experience designing the architecture of infrastructure and applications within the Amazon AWS cloud using the Amazon shared responsibility model.
You will need to work closely with various product design teams (embedded design teams, cloud architects, developers, project & release managers) to input into project non-functional and functional requirements.
You will need to maintain positive engagement and stakeholder support for IoT security to ensure it is understood and supported.
Work with security research, cloud and embedded engineers to understand and respond to threats facing the Dyson IoT cloud.
Assist with building security tooling to support pre-commit, Continuous Integration, Continuous Deployment through to production.
Support the development of security operations for monitoring, testing, audit and compliance of the Connected/IoT programme.
Assist the Infrastructure team in improving platform availability using automated protection mechanisms.
Design, coordinate and oversee security testing to verify the security of systems and cloud applications and drive the remediation of identified vulnerabilities.
Provide security risk assessment & recommendations, ensuring appropriate controls are in place to protect the business, and our customers.
Keep abreast of cloud security advisories, alerts, security trends and practices.
Ability to support the test practice to sign off functionality from a security perspective and give the go-ahead for production.
Communicate with technical and non-technical audiences at various levels, including project managers, delivery teams, wider security teams, and risk owners.
Develop and maintain strong working relationships with key IT, business, and supplier contacts.
Able to articulate threat and risk in the context of data privacy and brand reputation.
Providing pragmatic security guidelines and advice.
Contributor to enhancing development processes and tooling that highlight security issues to analysts early on in the development lifecycle.
Willing to prove out security methodologies through the production of prototype code in your chosen language.
Able to apply security principles across a wide variety of development languages
Act as an ambassador for all things security and be proactive within security communities both academic and commercial.
proven understanding of theory in a computing discipline
Proven security experience in previous security architecture role.
DevSecOps approach to cloud security
Amazon AWS experience
Linux system administration
Coding in any modern language
Vulnerability scanning experience
Penetration testing experience
Appreciation of risk
Intrusion detection experience
Proven use use of encryption
OWASP, NIST frameworks
Familiarity with Agile / Scrum working practices
A passion for security architecture
27 days holiday plus eight statutory bank holidays
Remote working 2-3 days per week possible
Performance related bonus
Free on-site parking
Subsidised café and restaurants
Discounts on Dyson machines