SSPM Consultant
Inside IR35
Hybrid, 2/3 days on site per week in Knutsford 
6 months, scope to extend 
  
As an experienced SSPM Consultant, you will assist in the strategic design, implementation, and ongoing optimisation of Security Monitoring Project initiatives.
 
Primary Responsibilities  
Apply security skills to design, build and protect enterprise systems, applications, data, assets and people.
Provide services to safeguard information, infrastructures, applications and business against Cyber Threats
Develop telemetry solution to give full observability of malicious traffic.
Investigate strategic XDR solution.
Secure 3rd Party SaaS configuration - Uplift security posture management controls to reflect greater business dependency and increased targeting of third and fourth-party providers to FIS
Work with global teams to provide consistent processes and solutions.  
Competency to lead technical and strategic conversations with respect to SSPM / CSPM and can advise partners on complex technical designs and deployments.   Technical Skills & Competencies  
3 - 4+ years of Industry experience 
Strong Experience on public cloud Azure and AWS Cloud Platforms
Experience in translating HLD, LLD into infra build requirements.
Experience designing and building high-performance, secure, scalable, observable, supportable, and maintainable backend services.
SSPM or CSPM knowledge, policies and configurations.
API Knowledge - integration of SaaS 3rd Party applications with on-prem tooling using APIs
Knowledge of Salesforce, ServiceNow, 0365 SaaS applications and security aspects of these applications
SSPM experience using Microsoft Defender for Cloud and/or any experience on AppOmni
Strong understanding of industry security framework and benchmarks such as NIST and CIS
Previous experience with SIEM tools and integration
Security Engineering experience
Excellent analytical and troubleshooting skills across complex systems.
Able to articulate complicated processes to non-technical stakeholders.
Experience creating designs for implementation of commercial off the shelf products 
Experience of dealing with incident, problem, and change management processes.   Desirable:  
Bachelor's degree in Information Technology, Computer Science or a related discipline.  
Previous experience in the financial sector 
Good awareness of Enterprise Security and Cyber Security as problem domains
Demonstrates excellent judgment for balancing between rapid development, long-term code maintainability and supportability.
Believes in the power of and the need for writing automated tests as part of development