SSPM Consultant
Inside IR35
Hybrid, 2/3 days on site per week in Knutsford
6 months, scope to extend

As an experienced SSPM Consultant, you will assist in the strategic design, implementation, and ongoing optimisation of Security Monitoring Project initiatives.

Primary Responsibilities

• Apply security skills to design, build and protect enterprise systems, applications, data, assets and people.
• Provide services to safeguard information, infrastructures, applications and business against Cyber Threats
• Develop telemetry solution to give full observability of malicious traffic.
• Investigate strategic XDR solution.
• Secure 3rd Party SaaS configuration - Uplift security posture management controls to reflect greater business dependency and increased targeting of third and fourth-party providers to FIS
• Work with global teams to provide consistent processes and solutions.
• Competency to lead technical and strategic conversations with respect to SSPM/CSPM and can advise partners on complex technical designs and deployments.

• 3 - 4+ years of Industry experience
• Strong Experience on public cloud Azure and AWS Cloud Platforms
• Experience in translating HLD, LLD into infra build requirements.
• Experience designing and building high-performance, secure, scalable, observable, supportable, and maintainable Back End services.
• SSPM or CSPM knowledge, policies and configurations.
• API Knowledge - integration of SaaS 3rd Party applications with on-prem tooling using APIs
• Knowledge of Salesforce, ServiceNow, 0365 SaaS applications and security aspects of these applications
• SSPM experience using Microsoft Defender for Cloud and/or any experience on AppOmni
• Strong understanding of industry security framework and benchmarks such as NIST and CIS
• Previous experience with SIEM tools and integration
• Security Engineering experience
• Excellent analytical and troubleshooting skills across complex systems.
• Able to articulate complicated processes to non-technical stakeholders.
• Experience creating designs for implementation of commercial off the shelf products
• Experience of dealing with incident, problem, and change management processes.

• Bachelor's degree in Information Technology, Computer Science or a related discipline.
• Previous experience in the financial sector
• Good awareness of Enterprise Security and Cyber Security as problem domains
  • Demonstrates excellent judgment for balancing between rapid development, long-term code maintainability and supportability.
  • Believes in the power of and the need for writing automated tests as part of development.