Position Overview
We are looking for a talented Senior DevSecOps / Cloud Security Engineer to join our Technology Department, with a focus on strengthening and automating our security posture across cloud and hybrid infrastructure.
As a DevSecOps / Cloud Security Engineer, you will be responsible for embedding security into every stage of our infrastructure lifecycle, from design to deployment. You will lead the implementation of cloud-native security controls in AWS, harden Kubernetes environments, and drive best practices across CI/CD pipelines. Your role includes continuous vulnerability management, network protection, monitoring for threats, and working with development, DevOps and IP teams to ensure secure-by-default practices. You'll also proactively identify risks, secure network perimeters, and automate remediation wherever possible.
Key responsibilities
* Design and implement scalable cloud security controls in AWS multi-account environments
* Lead Kubernetes security architecture, including PodSecurity, RBAC, and network policies
* Enforce zero trust network architecture and secure segmentation across cloud and hybrid environments
* Integrate security automation into CI/CD pipelines (image scanning, SAST, IaC analysis)
* Deploy and manage CrowdStrike, Tenable, and similar endpoint and vulnerability management tools
* Continuously monitor infrastructure for vulnerabilities, threats, and misconfigurations
* Enforce least privilege IAM policies and secure secrets management
* Conduct regular audits, penetration testing, and hardening of cloud workloads and host systems
* Conduct network traffic inspection using tools like VPC Flow Logs, packet capture, or NetFlow
* Collaborate with DevOps and IP teams on security-as-code principles
* Maintain compliance with internal policies and external standards (e.g. CIS, NIST, ISO 27001)
* Tune and respond to alerts from WAF, IDS/IPS, and SIEM systems
* Document security controls, incident response playbooks, and operational runbooks
* Champion a security-first culture through collaboration, training, and awareness
Requirements
* A minimum of 5 years in DevSecOps, Cloud Security, or Infrastructure Security roles
* Strong expertise in AWS security services (IAM, KMS, GuardDuty, Config, Security Hub, etc.)
* In-depth understanding of network security principles (firewalls, routing, segmentation, VPNs, IPsec, etc.)
* Proven hands-on experience with Kubernetes security (RBAC, NetworkPolicies, OPA/Gatekeeper, Admission Controllers)
* Experience operating CrowdStrike Falcon and Tenable Nessus / Tenable.io
* Experience with WAFs, DDoS protection, NIDS/NIPS, and threat intelligence integrations
* Comfortable with packet inspection, flow analysis, and traffic monitoring (tcpdump, Wireshark, Suricata, etc.)
* Proficiency in Infrastructure as Code (Terraform, Terragrunt) and configuration management (Ansible, Packer)
* Strong scripting/programming skills (Python, Go, or Bash) for automation and tooling
* Solid understanding of Linux security hardening and secure cloud networking
* Familiarity with service mesh security in Istio or similar
* Experience with GitOps workflows using tools like Argo CD or Flux
* Understanding of vulnerability management, secure software development lifecycle (SSDLC), and security controls for containers
* Exposure to compliance frameworks like ISO 27001, SOC2, NIST, PCI-DSS is a plus
* Excellent analytical and problem-solving skills with a proactive mindset
* Certifications such as AWS Certified Security Specialty, CKS, OSCP, or CISSP is a plus
* Experience with multi-cloud security (Azure/GCP)
* Background in ethical hacking, bug bounty programs, or red teaming
* Familiarity with tools like Falco, Sysdig, Trivy, or eBPF-based runtime security tools
Benefits
* Growth Opportunities: Advance your career in one of the fastest growing telecommunications companies, expanding over 40% year-on-year
* Major Transaction Exposure: Be in the driver's seat for transactions that will impact the future telco industry
* Work with a Talented Team: Collaborate with leaders and experts across the organization
* Dynamic Work Environment: A collaborative, fast-paced workplace where innovation is encouraged
* Professional Development: Access to cutting-edge skill development opportunities
* International Experience: Opportunities to work in different 1GLOBAL offices around the world
* Open Communication Culture: An environment that supports open dialogue and transparency
* Get Things Done Attitude: A results-driven team that values efficiency and impact
1GLOBAL is an equal opportunity employer. We value your character as much as your talent. Diversity drives our innovation, and we offer a collaborative, dynamic, and international work environment. We are excited for you to join our mission to revolutionise connectivity globally.
#J-18808-Ljbffr