- Software Engineering and Connectivity
- Malmesbury - United Kingdom
You will be a key member of a growing cloud security team at Dyson focused on IoT (Internet of Things) security. You will have commercial security experience under your belt including experience securing infrastructure and applications within the Amazon AWS cloud using the Amazon shared responsibility model.
You will need to work closely with various product design teams (embedded design teams, cloud architects, developers, project & release managers) to input into project non-functional and functional requirements.
You will need to maintain positive engagement and stakeholder support for IoT security to ensure it is understood and supported.
- Work with security research, cloud and embedded engineers to understand and respond to threats facing the Dyson IoT cloud.
- Assist with building security tooling to support pre-commit, Continuous Integration, Continuous Deployment through to production.
- Support the development of security operations for monitoring, testing, audit and compliance of the Connected/IoT programme.
- Assist the Infrastructure team in improving platform availability using automated protection mechanisms.
- Design, coordinate and oversee security testing to verify the security of systems and cloud applications and drive the remediation of identified vulnerabilities.
- Provide security risk assessment & recommendations, ensuring appropriate controls are in place to protect the business, and our customers.
- Keep abreast of cloud security advisories, alerts, security trends and practices.
- Contributor to enhancing development processes and tooling that highlight security issues to analysts early on in the development lifecycle.
- Willing to prove out security methodologies through the production of prototype code in your chosen language.
- Able to apply security principles across a wide variety of development languages
- Act as an ambassador for all things security and be proactive within security communities both academic and commercial.
- Degree educated
- Commercial post graduate security experience
- DevSecOps approach to cloud security
- Amazon AWS
- Linux system administration
- Coding in any modern language
- Vulnerability scanning Penetration testing
- Appreciation of risk
- Intrusion detection
- Use of encryption
- OWASP, NIST frameworks
- Familiarity with Agile / Scrum working practices
- A passion for security
- 27 days holiday plus eight statutory bank holidays
- Remote working 2-3 days per week possible
- Pension scheme
- Performance related bonus
- Life assurance
- Sport centre
- Free on-site parking
- Subsidised café and restaurants
- Discounts on Dyson machines