Cloud Security/DevSecOps Technical Lead

Cloud Security/DevSecOps Technical Lead

• Location: Paris
• Job Type: Contract 12 month Extendable (2/3 Year project)
• Languages: English and French

I am working with a leading Business Services Company who are working in conjunction with another company who are seeking a skilled Cloud Security/DevSecOps Technical Lead to join our team and drive the security initiatives for our cloud and DevOps environments.

Position Overview: The Cloud Security/DevSecOps Technical Lead will be responsible for leading the development and execution of security strategies for cloud and DevOps initiatives. This role requires collaboration with cross-functional teams to define product roadmaps, features, and requirements for security solutions. The successful candidate will spearhead the implementation of robust security policies, compliance frameworks, and threat detection mechanisms across cloud environments, including edge protection.

Key Responsibilities:

• Lead the development and execution of security strategies for cloud and DevOps initiatives, ensuring the protection of sensitive data and applications.
• Collaborate with cross-functional teams to define product roadmaps, features, and requirements for security solutions.
• Spearhead the implementation of robust security policies, compliance frameworks, and threat detection mechanisms across cloud environments, including edge protection.
• Implement and configure Web Application Firewalls (WAF) in Azure to protect web applications from common security threats
• Create comprehensive technical and process documentation for WAF configurations, policies, and incident response procedures.
• Provide training to internal teams on WAF usage and best practices.
• Manage a team of security professionals and engineers to design, deploy, and monitor security controls, including identity and access management, encryption, and firewall rules.
• Launch multiple AppSec and Cloud Security initiatives, such as improving Secure Score, automating security pipelines, secrets management, Infrastructure as Code (IaC) security, container and serverless security, and vulnerability remediation for cloud-native applications.
• Develop and implement security policies and procedures to comply with industry regulations and standards.
• Lead the design and execution of a comprehensive cloud security program, resulting in a significant reduction in security incidents.
• Collaborate with product development teams to integrate security measures throughout the DevOps lifecycle, achieving a seamless and secure development process.

Qualifications:

• Proven experience in leading and managing cloud security and DevSecOps initiatives.
• Strong understanding of cloud security, DevSecOps practices, and related technologies.
• Hands-on experience with Web Application Firewalls, particularly in Azure
• Excellent leadership, communication, and interpersonal skills.
• Ability to work effectively with cross-functional teams and stakeholders.
• Strong problem-solving skills and attention to detail.
• Relevant certifications in cloud security or DevSecOps are a plus.