Data Security Engineer

Data Security Engineer London, England

GFT Technologies SE
Full Time London, England 47000 - 91000 GBP ANNUAL Today
Job description

Data Security Engineer

Date: 21-Apr-2023
City: London
Company: GFT Technologies SE

Data Security Engineer


What we do?

As a pioneer for digital transformation GFT develops sustainable solutions across new technologies – from cloud engineering and artificial intelligence to blockchain/DLT. With its deep technological expertise, strong partnerships and comprehensive market know-how GFT offers advice to the financial and insurance sectors. We have been recognised for our engineering excellence and work side by side with our clients in an agile way to solve their most challenging problems. Companies gain easy and safe access to scalable IT applications and innovative business models.


Who are we?

GFT are a modern company with a passion for technology that thrives on collaboration with our clients and celebrates success with our team. We are an organisation that empowers you to not only explore but raise your potential and seek out opportunities that add value. At GFT, diversity, equality, and inclusion are at the core of who we are. Ensuring a diverse and inclusive working environment for all communities is one of the main pillars of our diversity strategy, based on our core values and culture. We have been certified for 2022/23 as a ‘Great place to work’ in the UK. So, if you want to have the opportunity to work with an outstanding and progressive organisation this position could be right for you.


Role Summary

We are seeking a passionate data security technologist to join our rapidly expanding Cyber Security Consulting & Delivery team. You will join cloud security engineering teams assigned to client engagements to deliver data security solutions needed to support complex cloud-based applications. You will serve as a data security evangelist, visionary and consultant to provide technical guidance on data security architecture and engineering best practices.


Role Responsibilities

This role will carry out some or all of the following activities:

  • Join cloud engineering teams as the data security SME on client cloud engineering or specialist security projects
  • Provide thought leadership to steer solution design on client engagements and internal projects and by authoring technical and opinionated blogs, articles, and whitepapers
  • Identify emerging data security technologies and evaluate suitability to improve client solution or bolster GFT offerings
  • Balance best of breed technical implementation with the commercial schedule and work within budget imperatives
  • Influence, engage, develop, and manage stakeholder relationships on client engagements
  • Promote GFT services and identify client opportunities
  • Participate in preparing client RFP/RFI responses and client proposals
  • Prepare and deliver articulate and effective presentations/workshops/demos of GFT cloud offerings in client pre-sales meeting and large audiences at events such as Google Next, AWS re:Invent, community Meetups and internal GFTedTalks and community events
  • Mentor junior engineers and peers with the opportunity to manage small internal teams
  • Assist with the recruitment process to expand the team to meet increasing demand
  • Maintain and expand deep cloud knowledge, industry trends, and best practices

Competencies and Skills Needed

Behavioural Skills:

  • An ability to apply structured thinking, simplifying complex problems into component parts, to the resolution of project challenges.
  • Effective communication and interpersonal skills to be able to establish rapport with people at all levels.
  • An eye for detail and accuracy, and an affinity with design issues and the ability to help establish and own a vision for our solutions.
  • Organizational ability and tenacity; able to think ahead to establish an efficient and appropriate course of action for self and others.
  • Take a proactive approach to work, good with handling uncertainty and can manage their work without close supervision.
  • A strong sense of ownership and a desire to deliver quality outcomes for the business.

Technical Skills:

Some things to bear in mind:

  • Cloud security covers a wide gamut of skills and vendors - we use the interview process to see if someone will fit into a role even if they do not ‘tick’ all the requirements below.
  • We value the ability to gain a deep understanding of a cloud platform and then demonstrate that to our clients through good communication, intelligent reasoning and top quality engineering.
  • The security team is intentionally cross-cloud and our aim is to support other engineers across the company and on projects to deploy capabilities like infrastructure-as-code, secrets management, service meshes, PKI infrastructures, data security and more in a secure and robust manner.
  • We recruit people who may be currently AWS or Azure experts – however, as 70% of our work is on Google Cloud, all new members of the team are supported to certify to GCP Professional level.


A suitable candidate would have most of the following attributes:

  • Solid cloud platform expertise ideally backed-up by a professional-level certification and/or security certification (e.g. Google Cloud PCA/PCSE, Azure AZ305/AZ500, AWS SAP/SCS)
  • A platform-neutral broad-based understanding of cloud security, audit and risk qualified by a neutral certification from CompTIA (Security+ or CySA+), CSA (CCSK or CCAK), or ISC2 (SSCP, CCSP or CISSP)
  • Familiarity with modern application architectures and cloud platforms, with an understanding of micro-service applications and the challenges of the migration or transformation of legacy applications
  • Practical knowledge securing cloud foundational services such as compute, network, storage, databases as well as build, deployment and operations
  • Applied knowledge of DevSecOps principles and automated security testing techniques and an appreciation of tooling choices
  • Involvement in assisting architects with the design of security services for hybrid environments including IAM, account/resource access policies, RBAC for data storage and encryption best practices
  • Experience implementing cloud-native secret management and encryption engine solutions, key-management, PKI and workload identity
  • Practical knowledge of container, Kubernetes and service mesh security in regards to data security
  • Applied knowledge of security products for threat detection & intelligence, workload protection, posture management, and SIEM/SOAR
  • Experience of frameworks for modelling adversarial behaviour (such as MITRE ATT&CK or STRIDE)
  • Experience hardening and assessing cloud resources following cloud vendor (well-architected frameworks and security blueprints) and neutral security guidance such as from NIST, CIS, and OWASP
  • Knowledge of data discovery, data labelling, DLP and data protection in hybrid and cloud environments
  • Knowledge of the shared responsibility model when working with data in the cloud
  • Knowledge of backup strategies and protection against ransomware

What we offer you

At GFT we offer a flexible hybrid working environment. The majority of our roles are determined by client requirements, but the expectation is that you will be required on client site 1 or 2 days a week (this may vary depending on client requirements and could go up or down). From a non-client standpoint, we encourage everyone to travel into a GFT office periodically to build a rapport with the wider GFT team and to ensure you feel connected with your peers/colleagues.


Every individual at GFT co-creates a mapped career path with growth opportunities, the ability to diversify, access to amazing Learning and Development programmes in an environment of collaboration, flexibility and support. We believe that investing in employee development promotes innovation and job satisfaction. The strategic relationships we have with industry leaders gives you unprecedented access to emerging technology and the opportunity to be part of the conversation of the future of digital.


GFT is an equal opportunities employer and we are committed to ensuring our recruitment processes are inclusive. Selection for employment at GFT will be on the basis of performance and ability. Where possible, GFT will capture applicants’ diversity demographics as part of its recruitment processes to promote it’s DEI agenda.


Founded in 1987 and located in 15 countries to ensure close proximity to its clients, GFT employs over 10,000 people globally. We provide our people with career opportunities in all areas of software engineering and innovation.

Data Security Engineer
GFT Technologies SE

www.gft.com
Stuttgart, Germany
Marika Lulay
$100 to $500 million (USD)
1001 to 5000 Employees
Company - Private
Information Technology Support Services
1987
Related Jobs

All Related Listed jobs

Customer Assistant
Marks & Spencer London, England 22575 - 25305 GBP ANNUAL Today

To deliver a great shopping experience for their customers, putting customers before task every time. Serve our customers efficiently and brilliantly well on

Front End Developer
BT London, England 39864 - 55938 GBP ANNUAL Today

Communicate with the customers, gather their requirements and obtain feedback. An allowance of 5k per annum may be payable monthly while you hold this DV and

research engineer
RAND Los Angeles, CA 140183 - 92744 USD ANNUAL Today

Job Type:
Regular
Research Software Engineers at the RAND Corporation work in a multidisciplinary environment, closely...

Babysitter/Nanny
Gen122 Ltd Grimsby, England 15600 GBP Today

Looking after the children and engaging them in activities. They are looking for a nanny and housekeeper for an immediate start.

Education Service Administrator
Bradford Teaching Hospitals NHS Foundation Trust Bradford, Yorkshire and the Humber, England 22816 - 24336 GBP ANNUAL Today

For further enquiries please contact the following; Tracey Harrison, Simulation Training Lead. Tel no 07943701415 or email [email protected]