SHL
Website:
shl.com
Job details:
Job Description
Technology…or technology that breathes life into work? SHL, People Science. People Answers.
This role within SHL’s
Senior Specialist - Security & Compliance function focuses on strengthening the security posture of SHL’s cloud platforms and applications, with a strong emphasis on AWS environments. You will work closely with engineering, DevOps, and product teams to secure cloud-native architectures, identify risks early, and embed secure-by-design principles across the SDLC and cloud lifecycle.
You will play a critical role in securing cloud infrastructure, enabling safe cloud adoption, and ensuring robust protection across modern application deployments including containers and Kubernetes environments.
A great benefits package is offered in a culture where career development, ongoing manager assist, collaboration, diversity, and inclusivity are intrinsic to the way we work. SHL continues to invest heavily in technology and security, making this an exciting time to be part of something transformational. Hybrid working is available.
What You Will Be Doing
- Design, implement, and manage security controls across AWS cloud environments aligned with industry best practices.
- Perform cloud security assessments, architecture reviews, and threat modeling for AWS services and cloud-native applications.
- Identify, analyze, and remediate misconfigurations and vulnerabilities using CSPM/CNAPP tools.
- Ensure secure configuration and hardening of core AWS services such as EC2, S3, IAM, RDS, Lambda, VPC, CloudFront, and EKS.
- Implement and enforce IAM best practices, including least privilege, RBAC, and secure credential/key management.
- Monitor cloud environments for threats and policy violations using tools like AWS CloudTrail, GuardDuty, and Security Hub.
- Secure containerized and Kubernetes (EKS) workloads, including image scanning, runtime protection, and configuration hardening.
- Integrate security into CI/CD pipelines (DevSecOps), including IaC scanning (Terraform, CloudFormation) and secrets management.
- Perform vulnerability management across cloud assets, including prioritization, tracking, and remediation support.
- Collaborate with DevOps, engineering, and architecture teams to embed security into cloud-native development.
- Conduct security reviews for new cloud deployments and provide secure architecture recommendations.
- Support incident response activities related to cloud security events, including investigation and root cause analysis.
- Develop and maintain cloud security policies, standards, and procedures.
- Prepare dashboards, reports, and documentation for leadership, audits, and compliance requirements.
- Support compliance initiatives such as ISO 27001, SOC 2, and GDPR within cloud environments.
- Stay updated on emerging cloud threats, AWS security updates, and industry best practices.
Essential
What we are looking for from you:
- Strong experience in AWS cloud security (services, architecture, and security controls).
- Hands-on experience with CSPM/CNAPP tools for cloud security posture management.
- Solid understanding of IAM, network security, and cloud-native security principles.
- Experience in DevSecOps, including CI/CD security integration and IaC security (Terraform/CloudFormation).
- Experience in container and Kubernetes security (EKS).
- Strong vulnerability management experience, including prioritization and remediation tracking.
- Ability to perform threat modeling and secure architecture reviews.
- Familiarity with cloud monitoring and detection tools such as CloudTrail, GuardDuty, Security Hub.
Desirable:
- Knowledge of multi-cloud environments (Azure/GCP).
- Experience supporting security audits and compliance frameworks.
- Strong understanding of modern attack vectors in cloud environments.
- Exposure to application security concepts (OWASP Top 10, SAST/DAST/SCA).
Certifications (Preferred):
- AWS Certified Security – Specialty (Highly preferred)
- AWS Certified Solutions Architect / SysOps Administrator
- CCSP, CCSK or equivalent cloud security certifications
- CEH / OSCP (good to have)
Get In Touch
Find out how this opportunity can help you achieve your career goals by applying through our knowledgeable and friendly Talent Acquisition team. Choose a new path with SHL.
#CareersAtSHL #SHLHiringTalent #CloudSecurity #ApplicationSecurity #DevSecOps #CyberSecurity #AWS #Innovation
About Us
- We unlock the possibilities of businesses through the power of people, science and technology.
- We started this industry of people insight more than 40 years ago and continue to lead the market with powerhouse product launches, ground-breaking science and business transformation.
- When you inspire and transform people’s lives, you will experience the greatest business outcomes possible. SHL’s products insights, experiences, and services can help achieve growth at scale.
What SHL Can Offer You
- Diversity, equity, inclusion and accessibility are key threads in the fabric of SHL’s business and culture (find out more about DEI and accessibility at SHL )
- Employee benefits package that takes care of you and your family.
- Support, coaching, and on-the-job development to achieve career success
- A fun and flexible workplace where you’ll be inspired to do your best work (find out more LifeAtSHL )
- The ability to transform workplaces around the world for others.
SHL is an equal opportunity employer. We support and encourage applications from a diverse range of candidates. We can, and do make adjustments to make sure our recruitment process is as inclusive as possible.
Click on Apply to know more.