Experis is looking for a skilled Cloud Security Specialist to work closely with a team of engineers, focusing on developing, implementing, and managing robust cloud security solutions. This role emphasizes securing our Azure Cloud environment and future microservice platforms to ensure compliance and resilience within a secure infrastructure.
Responsibilities:
- Establish and enforce security policies through infrastructure-as-code security controls, compliance checks, and monitoring solutions.
- Perform regular security assessments, including penetration testing and vulnerability scans, in cloud environments.
- Design and maintain role-based access control, network segmentation, and identity management to provide secure, least-privilege access.
- Collaborate with DevOps and engineering teams to embed security best practices into CI/CD pipelines.
- Monitor cloud resources for security incidents, unauthorized access, and potential threats, and manage incident response.
- Keep up-to-date with evolving security threats and Azure security features, adjusting the cloud security posture as needed.
- Support governance and compliance initiatives related to GDPR, Microsoft Cloud Security Benchmark, and internal security policies.
- Work with IT security to ensure compliance with both cloud and organizational security standards.
Requirements:
Technical Skills:
- Significant experience with security controls and frameworks, especially in Microsoft Azure. Azure Security certification is a plus.
- Proficiency in tools like HashiCorp Terraform, Sentinel, or other policy-as-code frameworks.
- Strong familiarity with cloud-native security tools, including Azure Security Center, Azure Sentinel, and real-time logging solutions.
- Expertise in network security, including configuring firewalls, load balancers, VNETs, and routing for secure cloud environments.
- Experience with monitoring and compliance tools to maintain security standards across infrastructure (e.g., Azure Monitor, Log Analytics).
- Knowledge of DevSecOps practices and automation of security checks within CI/CD pipelines.
- In-depth understanding of identity and access management, such as Entra ID configurations and multi-factor authentication.
- Comprehensive knowledge of compliance standards like GDPR for cloud data protection.
- Scripting proficiency (e.g., PowerShell, Python) to automate security tasks and generate custom reports.
Non-Technical Skills:
- Strong analytical and problem-solving abilities.
- Excellent organizational skills, with a security-first approach to cloud operations.
- Effective communicator with both technical and non-technical stakeholders.
- Proactive and hands-on attitude towards cloud security, with an ability to work independently.
- Capable of presenting security policies, risks, and mitigation strategies to management and stakeholders.
- Fluent in English, with knowledge of French, Dutch, and/or German considered an asset.
Additional Information:
- Location: Primary locations are Brussels and Namur, with up to three days per week of remote work available.
- For Non-EU Candidates: Candidates must have a valid work permit and residence permit for Belgium. Due to secure networks, some on-site presence will be required.
What Makes This Mission Unique?
- Exciting Project: Join a forward-thinking team within the energy sector, contributing to cutting-edge technologies that are driving the energy transition. This is a great chance to showcase your skills and expand your expertise.
- Focus on Well-being: We prioritize a positive work environment with a strong focus on employee well-being.
- Diversity and Inclusion: Work within a diverse, knowledgeable, and passionate team leading the way toward a sustainable future.
