Overview

Our team of hundreds of skilled experts keeps Formula 1 moving. We are on the lookout for a Security Engineer. Reporting to the Cyber Security Manager, the main purpose of this role is to support the development and management of security technologies across F1''s growing technology landscape.Responsibilities

Assess and maintain high standards of security maturity across Formula 1''s cloud infrastructureFocus on new and existing infrastructure, managing technical vulnerabilities, support continued system maintenance, and minimise technical debtEnsure visibility and reporting of Cloud infrastructure against Formula 1''s compliance and security standards (such as ISO 27001 and CIS)Main duties to be carried out include, but not limited to:Vulnerability Management and reporting across Formula 1''s cloud environment(s), including:Development of requirements, design, and implementation of cloud security tools (E.g. compliance and host security)A key focus on threat detection and risks across cloud environmentsIdentification, remediation, and reporting of security vulnerabilitiesReporting on compliance to F1''s security standardsSupport in the delivery and management of security design and architecture reviewsWorking closely with Infrastructure teams on security design and control strategies to reduce risksThe definition and operation of secure development / operations (DevOps) practices, inc. code scanning, Kubernetes, container security.System and device hardening policies and reportingTechnology focused threat assessments to identify threats/risksDocumentation of security requirements, patterns, and processesLiaising closely with Formula 1''s cyber security, infrastructure, and digital teams on new and existing initiatives.Qualifications

Extensive hands-on experience with AWS cloud infrastructure inc. AWS Security Services (CloudTrail, Guard Duty, WAF, IAM, Security Hub etc.)Knowledge of CI/CD including DevSecOps patterns and principlesInfrastructure as code experience utilising TerraformKnowledge of container technologiesExtensive experience with AWS Security Services and Governance and Information Security Best PracticesExperience with other enterprise cloud platforms e.g. AzureKubernetes experienceIdentity and Access Management deployment and administration (e.g. Okta, Entra ID)Web application security technologies WAF, Bot Protection, DDOS Protection, etc.Adaptable, passionate and a team-playerRole details

Division: TechnicalSeniority level: Mid-Senior levelEmployment type: Full-timeJob function: Information TechnologyIndustries: Technology, Information and Internet

#J-18808-Ljbffr