SSPM Consultant

Role: SSPM Consultant

Location: Knutsford or London - (Hybrid working, 2 days on-site)

Duration: 6 Months

Day rate: £575 inside IR35

Role Description:

As an experienced SSPM Consultant, you will assist in the strategic design, implementation, and ongoing optimisation of Security Monitoring Project initiatives within the bank.

Main responsibilities:

• Apply security skills to design, build and protect enterprise systems, applications, data, assets and people.
• Provide services to safeguard information, infrastructures, applications and business against Cyber Threats
• Develop telemetry solution to give full observability of malicious traffic.
• Investigate strategic XDR solution.
• Secure 3rd Party SaaS configuration - Uplift security posture management controls to reflect greater business dependency and increased targeting of third and fourth-party providers to FIS
• Work with global teams to provide consistent processes and solutions.
• Competency to lead technical and strategic conversations with respect to SSPM / CSPM and can advise partners on complex technical designs and deployments.

Key skills and experience:

• Strong Experience on public cloud Azure and AWS Cloud Platforms
• Experience in translating HLD, LLD into infra build requirements.
• Experience designing and building high-performance, secure, scalable, observable, supportable, and maintainable backend services.
• SSPM or CSPM knowledge, policies and configurations.
• API Knowledge - integration of SaaS 3rd Party applications with on-prem tooling using APIs
• Knowledge of Salesforce, ServiceNow, 0365 SaaS applications and security aspects of these applications
• SSPM experience using Microsoft Defender for Cloud and/or any experience on AppOmni
• Strong understanding of industry security framework and benchmarks such as NIST and CIS
• Previous experience with SIEM tools and integration
• Security Engineering experience
• Excellent analytical and troubleshooting skills across complex systems.
• Able to articulate complicated processes to non-technical stakeholders.
• Experience creating designs for implementation of commercial off the shelf products
• Experience of dealing with incident, problem, and change management processes.

Desirable:

• Bachelor's degree in Information Technology, Computer Science or a related discipline.
• Previous experience in the financial sector
• Good awareness of Enterprise Security and Cyber Security as problem domains
• Demonstrates excellent judgment for balancing between rapid development, long-term code maintainability and supportability.
• Believes in the power of and the need for writing automated tests as part of development.