Cloud Security Engineer | Devoteam Cyber Trust

Company Description

Devoteam Cyber Trust is the Cybersecurity specialist arm of the Devoteam Group. With our 800+ experts located across EMEA, we aim to establish cybersecurity as an enabler of business success rather than a gatekeeper. We leverage an end-to-end approach to Cyber Resilience, Applied Security, and Managed Security services to secure the tech journey of large and medium-sized companies from all sectors and industries.
Since 2009, previously known as INTEGRITY, our team based in Portugal is specialised in providing cutting-edge Managed Security Services that combine its expertise and proprietary technology to consistently and effectively reduce the cyber risk of our clients. The comprehensive service range includes Persistent Intrusion Testing, ISO 27001, PCI-DSS, GRC Consulting and Solutions, and Third-Party Risk Management. ISO 27001 (Information Security) and ISO 9001 (Quality) certified, PCI-QSA, and member of CREST and CIS - Centre for Internet Security, we provide services to a considerable number of clients, operating in more than 20 countries.

Job Description

We are seeking an experienced Cloud Security Engineer to remediate security risks in our
Google Cloud Platform (GCP) and Amazon Web Services (AWS) environments. This role will
focus on implementing robust security controls, improving monitoring capabilities, and
enhancing our overall cloud security posture.
The candidate will have the following duties/responsibilities:

• Implement and optimise security controls in GCP and AWS environments;
• Set up and configure cloud-native security tools such as GCP Security Command Center, Cloud Armor, AWS GuardDuty, and AWS WAF;
• Develop and implement comprehensive logging and monitoring solutions for cloud infrastructure;
• Conduct security assessments and vulnerability scans of cloud environments;
• Implement data loss prevention (DLP) strategies for cloud-based services;
• Assist in the development and enforcement of cloud security policies and procedures;
• Collaborate with development and network teams to implement security best practices,
• Design and implement secure cloud network architectures;
• Manage cloud IAM configurations and implement least privilege access;
• Implement and manage encryption for data at rest and in transit;
• Assist in cloud-related incident response and forensics.

Qualifications

The candidate should have:

• 5+ years of experience in cloud security, with a focus on GCP;
• Strong knowledge of cloud security best practices and compliance standards (e.g., CIS benchmarks, NIST);
• Hands-on experience with cloud-native security tools and services;
• Proficiency in scripting languages (e.g., Python, Bash) for automation of security tasks;
• Experience with infrastructure-as-code tools like Terraform;
• Familiarity with container security and Kubernetes;
• Understanding of network security concepts as they apply to cloud environments;
• Experience with cloud-based identity and access management (IAM).

Preferred Qualifications:

• Relevant cloud security certifications (e.g., CCSP, AWS Certified Security - Specialty, Google Cloud Certified - Professional Cloud Security Engineer);
• Experience with multi-cloud security strategies;
• Knowledge of DevSecOps practices and CI/CD pipeline security.

Additional Information

What we offer:

• Professional development and monitoring talent;
• Commitment to our employees' development;
• Collaboration in a company that is constantly growing and evolving;
• Strong organisational culture: collaboration, sharing, flexibility, integrity and low ego.

Would you like to join our team? Then send your CV.