Cloud Security Advisor

Transforming the way customers experience mobility, responsibly. Delivering innovation at the speed of life.

• Relevant experience in Cloud Security, Infrastructure Security, DevSecOps, or a closely related area
• Experience working in large or complex environments with a broad range of stakeholders
• Experience advising on secure cloud adoption, architecture, or operational security across enterprise platforms
• Good understanding of cloud security risks, controls, and remediation techniques across major cloud platforms
• Experience with cloud security tooling, logging and monitoring, IAM, encryption, and secure networking concepts
• Ability to help integrate and scale security controls within CI/CD and automation pipelines
• Practical knowledge of compliance and control frameworks such as ISO 27001, NIST CSF, CIS Benchmarks, GDPR, or NIS2
• Ability to explain complex technical concepts clearly to a range of audiences
• Ability to build strong working relationships and positively influence stakeholders across different teams
• Collaborative mindset with an interest in coaching, mentoring, continuous learning, and helping others succeed

Nice to have:

• Familiarity with multi-cloud environments such as AWS, Azure, or Oracle Cloud
• Knowledge of container, Kubernetes, and cloud-native security practices
• 3 years of experience in a similar position

• Develop and evolve cloud security policies, standards, and secure architecture practices aligned with recognised frameworks and business needs
• Provide trusted security advice on cloud design covering identity access, encryption, networking, platform hardening, and resilience
• Perform cloud risk assessments, vulnerability reviews, and compliance gap analysis defining practical mitigation strategies
• Support teams in identifying, prioritising, and remediating cloud security weaknesses effectively
• Act as a trusted partner for infrastructure, platform, and project teams helping embed secure-by-design thinking into delivery
• Translate complex technical risks into clear actionable guidance for both technical and non-technical stakeholders
• Contribute to cloud security monitoring, incident response preparedness, and investigation support where needed
• Help strengthen DevSecOps practices by integrating security controls into automation and CI/CD pipelines
• Collaborate across security and engineering teams to share best practices, improve consistency, and raise cloud security maturity
• Provide regular reporting and insight on cloud security posture, key risks, and improvement opportunities