UST
Website:
ust.com
Job details:
Role Description
Overview of Business Area
Global Cybersecurity is responsible for enabling businesses and functions to manage their information, technology and cybersecurity risks by ensuring these are well-understood, and that controls used the manage such events are defined, assessed and implemented appropriately. Cybersecurity predominantly delivers this via objective, independent, professional and specialized subject matter experts. The role forms part of the 1LoD in relation to the risk management framework.
The Cybersecurity Technology Engineering (CTE) function, part of Global Cybersecurity, is accountable for cloud and containers security engineering protection. The Engineering team within CTE supports and develops the software needed to meet the business requirements for the identification, assessment and remediation of security defects across estate including on premise, Cloud infrastructure and those resulting from third party engagements.
Job Description
We are seeking a skilled and motivated Cloud/Containers Security SME to join the CTE to design, with focus on end point security capability within a Cloud Native Application Protection (CNAPP) service. You will work closely with software engineers, cloud platform teams, operations to ensure our services meet availability and performance goals.
Responsibilities
Experience in managing end point security within cloud and containers ecosystems e.g. CrowdStrike, Wiz, Falco etc. This includes runtime security agents are configured in line with best practice and standards.
Perform detections reviews, detection tuning, building custom detections rules, onboarding, deployment validation, and demising.
Define reporting requirements to ensure that the capability is operating effectively across the target estate.
Monitor outputs, data gaps, accuracy of detection and identify false positive.
Communicate with security operations and service owners to support triage and investigations of detections.
Support Cyber by providing configuration evidence, operational metrics for external stakeholders on demand e.g. Audit, regulators.
Implement change management practices for policies updates and configurations changes.
Requirements
Hands on experience with end point security tools e.g. CrowdStrike, Wiz Sensor, MS defend
Experience integrating end point security for cloud and containers with SIEM monitoring or analytics tools.
Hands on knowledge in cloud and containers technologies e.g. AWS, EKS, K8, GCP GKE
Strong collaboration and stakeholder management
Attention to details and adopting risk-based approach.
Skills
cloud security,security operations,crowdstrike,wiz,siem,container security,aws,end point security
Click on Apply to know more.