Cloud Security Engineer

About Temenos

Temenos powers a world of banking that creates opportunities for billions of people and businesses everywhere. We have been doing this for over 30 years through the pioneering spirit of our Temenosians who are passionate about making banking better, together.

We serve over 3000 clients from the largest to challengers and community banks in 150+ countries. We collaborate with clients to build new banking services and state-of-the-art customer experiences on our open banking platform, helping them operate more sustainably.

At Temenos, we have an open-minded and inclusive culture, where everyone has the power to create their own destiny and make a positive contribution to the world of banking and society.

VALUES

Care About Transforming The Banking Landscape.

Commit to being part of an exciting culture and product evolving within the financial industry.

Collaborate effectively and proactively with teams within or outside Temenos.

Challenge yourself to be ambitious and achieve your individual as well as the company targets.

Responsibilities And Accountabilities

The principal areas of responsibility are as follows:

• Understand and contribute to cloud security architecture and design patterns.
• Review and validation of cloud security controls across public and private cloud infrastructure including Azure (essential) and AWS (desirable). Any other cloud security experience beneficial.
• Support the team by focussing on developing effective automation solutions to common, repetitive manual tasks, ensuring proper attention to quality and achieving positive business outcomes are achieved.
• Support Cloud security operations including security alerts, incident, change control and reporting, aligning to Temenos SOC activities.
• Security assurance- oversee vulnerability management activities, including the reporting, tracking, and coordination of remediation efforts with respective technical and cloud stakeholders. This includes monitoring vulnerability status, ensuring timely resolution, and maintaining compliance with defined security baselines
• Technical experience in cloud security services – network and storage encryption, key management, tokenisation, API security, micro services, firewalls, application gateways, network security groups, web security and identity and access management.
• Support the delivery of client projects in the region and collaborate on planning and execution activities requiring cloud security involvement.
• Conduct security assessments for cloud infrastructure and cloud service providers.
• Support internal and external audits, risk and compliance initiatives.
• Ensure cloud security standards and patterns are followed and adhered to
• Documentation and maintenance of cloud security standards and processes
• Demonstrate strong expertise in Privileged Access Management (PAM) — particularly in Delinea (formerly Thycotic) and other PAM solutions such as BeyondTrust — including implementation, integration, and management of privileged accounts, policies, and vaulting solution
• Be available to provide round-the-clock support when required, particularly for access-related issues, disaster recovery activities, critical incidents, or urgent security events.
  
  

• At least 8 years’ experience in information/cyber security with recent cloud security experience.
• Proven experience in a senior technical/senior engineer/team lead role.
• Oversight for more junior members of the team, demonstrated ability to coach, develop and mentor team members sharing technical skills and experience to develop team capabilities.
• Recent hands-on experience with securing cloud infrastructure in either Azure and/or AWS.
• Have hands-on security engineering experience and demonstrable ability to develop automation solutions where appropriate (e.g. scripting languages, python, KQL, powershell, azure policy, terraform etc). Any other development experience highly regarded.
• DevOps and automation experience to help manage transition to DevSecOps.
• Strong knowledge of common cloud security design patterns/frameworks.
• Good understanding of cloud technologies and associated deployment patterns.
• Good knowledge of WAF and Firewall technologies.
• Can communicate effectively both orally and in written format.
• Able to provide cloud security support to clients and operations in a fast-paced environment.
• Solid understanding of current and recent tactics/techniques and procedures for preventing common attack types
• Practical experience in Privileged Access Management (PAM) solutions with emphasis on Delinea (formerly Thycotic) and BeyondTrust including configuration, integration, and administration.
• Experience in vulnerability management process including reporting, tracking, and coordinating remediation activities with technical and cloud stakeholders.
  
  

• Maternity leave: Transition back with 3 days per week in the first month and 4 days per week in the second month
• Civil Partnership: 1 week of paid leave if youre getting married. This covers marriages and civil partnerships, including same sex/civil partnership
• Family care: 4 weeks of paid family care leave
• Recharge days: 4 days per year to use when you need to physically or mentally needed to recharge
• Study leaves: 2 weeks of paid leave each year for study or personal development