Cloud Assurance Specialist

< back to all jobs

Financial Conduct Authority

Regulating financial services firms and financial markets in the UK, https://www.fca.org.uk/careers

Requirements of the role

The FCA regulates the conduct of 45,000 firms in the UK to ensure our financial markets are honest, fair and competitive. Follow this link to find out more About the FCA.

 

We are seeking a skilled and experienced Cloud Assurance Analyst to join our Cyber Assurance team, which is part of the Cyber & Information Resilience (C&IR) department.

 

Cyber and Information Resilience (C&IR) is responsible for the management of cyber security at the FCA. ‘Cyber security’ means the protection of the FCA’s data and systems from malicious activity, including theft, damage and disruption, in order that the FCA can deliver its key business functions. C&IR is now part of a new formed Directorate lead by our CISO, Director of Cyber & Operational Resilience Division.

 

As a Cloud Assurance Specialist, you will act as a subject matter expert in relation to cloud security, working closely with a variety of projects and BAU throughout the FCA. You will be responsible for providing security input, technical oversight, advice and assurance, to ensure cloud services utilised by the organisation are implemented and operated securely.

 

Your expertise will ensure that our cloud environments are secure, compliant, and resilient against evolving cyber threats.

 

What you will be doing

  • Cloud Posture Management Toolsets – ability to uplift security posture management controls to reflect greater business dependency and increased targeting of our cloud environments
  • Competency to be able to have technical and strategic conversations with respect to Cloud Posture management Tools on complex technical designs and deployments
  • Cloud administration, security, or auditing of key cloud platforms such as Azure, AWS and GCP
  • Conduct regular security audits and risk assessments of cloud infrastructure to identify security vulnerabilities and risks
  • Working with DevSecOps practices to integrate cloud security controls into the software development lifecycle and automated CI/CD pipelines
  • Defining security metrics and reporting (KPI’s and KRI’s)

View on member website

View

 Location

London, Leeds, Edinburgh

 Contract type

Full time, Permanent

 Profession

Assurance, Finance, Specialist

 Working pattern

Flexible working, Hybrid

 Closing Date

04/02/2025