Cloud Computing International
This is an exciting opportunity to join a well established and respected Microsoft focused, London based, consultancy specialising in the delivery of modern workplace and cloud based solutions to clients across a wide variety of sectors.
Manage the security needs of their Managed Service clients including maintenance of ISO27001 certification. Heavily focused on Microsoft Security products, the role includes monitoring and management of pre and post breach incidents and overall service improvement and growth planning for the security dept.
5-10 years in the Information Security industry
Strong experience with security strategy, with a passion to make security realistic, achievable and interwoven with the business fabric
Strong experience with a broad range of Microsoft security technologies, including Defender, DLP, EOP, NAC, IDS/ IPS, IDAM, Certificate Management, SIEM, Endpoint Protection, Anti-malware, vulnerability management; Exposure to Office 365 E3 and EMS E3 security features such as;
· Microsoft Intune
· Azure Multi Factor Auth
· Conditional Access Control
· Self Service Password Reset configuration
· Microsoft Cloud App Security
· Azure ATP
· Azure Sentinel
· Azure Information Protection
· Azure AD P1 & P2
· E5 features
· Advanced eDiscovery
· Customer Lockbox
· Advanced Data Governance
· Service Encryption with Customer Key (nice to have)
· Office 365 Privileged Access Management
· PowerShell scripting skills
*Strong oral, written, and presentation abilities -able to convey risk to all levels of the business, from C-level executives to operations and development teams
*Strong experience in migrating enterprise companies from traditional data centre infrastructure, application and data designs to hybrid or fully-cloud enabled practices
*Strong experience with cloud provider ecosystems, including Microsoft Office 365 E5 SKUs and Microsoft Azure.
*Some experience with Unix/Linux and Windows system administration
*Some experience with logging and alerting platforms, including SIEM integration
*Some proven ability in security process and organizational des design
*Current understanding of Industry trends and emerging threats
*Knowledge of incident response methodologies and technologies.
*Well-rounded background in network, host, database, and application security;
*Formal training in and experience using an enterprise architecture methodology (for example, the Zachman Framework or TOGAF);
*Experience driving a culture of security awareness
*Experience with the Data Protection Act 1998 and the new GDPR regulation
*Experience administering network devices, databases, and/or web application servers
*Professional IT Accreditations in at least one of these (CISM, CCSA, CCSE, JNCIA, CCNA, CISSP, CCIE Security).
Company can interview and onboard remotely due to COVID-19 (100% remote working currently)
After Lockdown; Up to 70% remote working, 30% client site and office based in Central London.