Location: Greater London, United Kingdom

The Senior Cloud Security & DevSecOps Engineer will play a vital role in protecting Cantor's global cloud estate. This hands-on role involves embedding security early in the SDLC, leading complex cloud security issue resolution, and implementing robust controls across identity, workloads, data, and the software supply chain. The successful candidate will collaborate effectively with various teams and vendors, champion ITIL processes, and stay ahead of emerging cloud and DevSecOps technologies.

Responsibilities

• Manage and maintain CSPM/CNAPP platforms, cloud-native security services, and policy-as-code pipelines.
• Perform precise and accountable implementations, configuration changes, and platform upgrades across AWS, Azure, and GCP.
• Work with vendors and cloud service providers to resolve complex technical issues and manage product lifecycles.
• Mentor junior team members, providing technical guidance and support.
• Stay updated with emerging cloud and DevSecOps technologies, adapting quickly to evolving threat landscapes.
• Define cloud security requirements and collaborate on detailed designs and deployment of solutions.
• Manage and support cloud security implementations and configurations across CSPM/CNAPP, native cloud controls, and IAM.
• Perform root cause analysis, provide recommendations, and execute problem resolutions.
• Collaborate with various teams to resolve technical and operational issues, influencing and following through on resolutions.
• Champion ITIL processes for change, incident, and problem management, ensuring efficient and effective practices.

Qualifications

• Bachelor's degree in Computer Science, Information Systems, or related field, or equivalent experience.
• Minimum 7+ years of hands-on experience in cloud security engineering, DevSecOps, or similar technical roles.
• Cloud and security certifications (AWS, Azure, GCP, (ISC) CCSP, HashiCorp Terraform Associate) are advantageous.
• Expert knowledge of multi-cloud architecture, cloud identity protocols, encryption, and key management.
• Experience with CSPM/CNAPP platforms (Prisma Cloud, Defender for Cloud), cloud-native IAM, and Infrastructure-as-Code (Terraform).
• Ability to develop Cloud Security and DevSecOps policies, procedures, and documentation.
• Strong problem management skills, including risk assessment and corrective action determination.
• Excellent interpersonal and communication skills for effective collaboration with internal and external stakeholders.
• Experience with traditional network security and hybrid connectivity solutions is beneficial.
• Familiarity with Logging and SIEM Solutions (Splunk, Microsoft Sentinel, Google Chronicle) is an asset.

Cantor Fitzgerald seeks a Senior Cloud Security & DevSecOps Engineer to safeguard its multi-cloud environment, driving automation and collaboration with platform engineering and application development teams.