About the role:
We are looking for an experienced and passionate Principal Cloud Security and Compliance, to join our Secure Public Cloud Service – Cloud Security and Compliance team!
The team’s mission is to develop Cloud Security required controls and continuously monitor the compliance state, threat and risk management and work with relevant stakeholders to identify the security gaps and remediate them on timely manner.
Being part of this team, you will provide end-to-end security advisory on Cloud operation team, DPDHL Business services, , building secure cloud services. The projects will seek your advice and support along the risk position of the service in its lifecycle.
$ads={1}
Team introduction:
Secure Public Cloud Services (SPCS) build IaaS & PaaS cloud services globally for DPDHL business units, cooperates with all division under the Information Security, Risk and Compliance Management team to meet business partner's requirements to maintain the confidentiality, integrity and availability of the IT infrastructure and assets. Services provided are but not limited to Cloud Security Compliance, Cloud Security Posture Management, Threat and Vulnerability management etc.
Your work:
- Continuously monitoring Cloud Security Compliance and working with relevant stakeholders on the remediation aspects.
- Maintain security framework for public cloud services to obtain respective cloud certifications e.g. ISO27001
- Set and regularly evaluate security compliancy for individual SPCS services from a business as usual perspective
- Cooperate with auditors and follow on security related findings
- Support and Collaborate with SPCS teams, InfoSec and Business Solutions and Security teams in a security area
- Work with Onboarding and Technical Consulting team during Proposal Phase preparation of project scope, plan and effort estimation for any security topic
Application you will use:
- Identify and Access Management
- Privilege Access Management
- Cloud Security Posture Management
- Cloud CASB
You should have:
- At least 3 - 5 years of experience in Information Security
- Experience in Cloud Security and Architecture
- Azure Foundation Certification
- Having knowledge of Standards such as ISO 27001, NIST, Cloud Security Alliance, GDPR
- Having knowledge of developing standards and procedure
- Experience in developing compliance reports
- Ability to adapt to dynamic threat landscape in a global environment
What is a plus point(s):
Certifications like GCP , OCI Security
ISO 27001 knowledge
DevSecOps experience related to application deployments.
Data protection
WHAT YOU WILL GET FROM US
- Great Team of IT Profession with Global Working Exposure
- Flexible Benefits – Customized According to Individual Needs
- On-Going Professional and Technical Training and Certifications
- A Multicultural Environment Modern Offices
- Smart Casual Everyday
- Global Internal Job Opportunities Available Within DPDHL
- Home Office Possibilities
Sounds good? Start your application now! For more information feel free to reach us on veronika.hajna@dhl.com
$ads={2}
