Engineer, Cloud Security AWS at Standard Bank Group

Job Description

• To design, implement, maintain, and continuously improve cloud security controls and security architecture across AWS environments within Standard Bank. The Cloud Security Engineer will work closely with Cloud Engineering, Infrastructure, DevOps, Security Operations, Risk, and Application teams to ensure that cloud platforms are secure, compliant, resilient, and aligned to enterprise security standards. 
• The role is responsible for implementing security-by-design principles, automating security controls, monitoring cloud environments for threats and vulnerabilities, supporting compliance requirements, and enabling secure cloud adoption across the organisation. 

Qualifications

• Type of Qualification: First Degree
• Field of Study: Information Technology

Preferred Certifications 

• AWS Certified Security – Specialty 
• AWS Certified Solutions Architect Associate/Professional 
• AWS Certified SysOps Administrator 
• Certified Cloud Security Professional (CCSP) 
• Certified Information Systems Security Professional (CISSP) 
• Microsoft Security, Compliance, and Identity Fundamentals (advantageous) 

Experience Required

Software Engineering

3-5 Years 

• Experience securing AWS cloud environments within enterprise organisations. 
• Strong cloud platform engineering background with deep AWS expertise, including enterprise-scale landing zones and Control Tower implementations. 
• Experience implementing cloud security controls and security frameworks. 
• Experience implementing platform-level IAM, permission boundaries, SCP frameworks, and preventative controls aligned to enterprise security standards. 
• Experience with cloud security monitoring and incident response. 
• Experience working within DevSecOps or cloud engineering teams. 

3-5 years

• Design and implement secure AWS cloud architectures and security controls. 
• Configure and maintain AWS security services and security tooling. 
• Implement cloud security best practices and security guardrails across AWS environments. 
• Support cloud governance, risk, and compliance initiatives. 
• Perform cloud security assessments, vulnerability management, and remediation activities. 
• Monitor cloud environments for security threats, suspicious activity, and policy violations. 
• Implement and maintain security monitoring, alerting, and incident response capabilities. 
• Collaborate with DevOps teams to embed security controls within CI/CD pipelines. 
• Automate security controls using Infrastructure as Code (IaC). 
• Support identity and access management, including privileged access controls. 
• Develop and maintain cloud security standards, policies, and procedures. 
• Conduct root cause analysis and remediation following security incidents. 
• Participate in security architecture reviews and cloud transformation initiatives. 
• Ensure compliance with regulatory, audit, and internal security requirements. 

Additional Information

Behavioural Competencies:

• Articulating Information
• Challenging Ideas
• Developing Expertise
• Examining Information
• Exploring Possibilities
• Generating Ideas
• Interpreting Data
• Producing Output
• Providing Insights
• Pursuing Goals
• Resolving Conflict
• Team Working

Technical Competencies:

• AWS Cloud Security 
• Cloud Security Architecture 
• Identity and Access Management (IAM) 
• DevSecOps 
• Infrastructure as Code 
• Security Monitoring and Incident Response 
• Vulnerability Management 
• Threat Detection and Analysis 
• Cloud Governance and Compliance 
• Security Risk Management 
• Network Security 
• Security Automation 
• Information Security 
• Cloud Infrastructure 
• Security Engineering 
• Secure Software Development Lifecycle (SSDLC)