The company:

Toshiba GCS is a provider of technology services for retail businesses to create high-quality digital platforms and products that accelerate time to market. Our diverse and adaptable teams provide the right mix of solutions and methodologies to deliver results as we collaborate with our clients’ teams to foster innovation through continuous learning.

What you will bring to the team:

The Cloud Security Engineer designs, implements, and supports security solutions that protect the cloud infrastructure and applications powering some of the world’s largest retail environments. Our engineers are embedded across the full lifecycle of cloud-native projects: they engage directly with product and platform teams to understand security requirements; they collaborate with DevOps, CloudOps, architecture, and compliance stakeholders to design and integrate secure solutions; and they provide ongoing oversight, incident response, and continuous improvement for the security posture of our cloud environments.

What will you be doing:

Design and implement security controls across Azure services.
Secure Kubernetes clusters by applying best practices for Role-Based Access Control, network policies, secrets management, and runtime protection.
Monitor and respond to cloud security alerts using Cloud-Native Application Protection Platforms.
Work closely with architects, developers, and product teams to ensure security is built-in.
Conduct threat modelling, risk assessments, and security architecture reviews for new and existing cloud-native applications.
Stay current with emerging threats, vulnerabilities, and cloud security trends, and proactively recommend improvements.

Qualifications:

Bachelor’s degree in Computer Science, Cybersecurity or equivalent experience.
5+ years of hands-on experience in cloud security engineering, including securing cloud-native applications and infrastructure across cloud platforms.
Hands-on experience securing Kubernetes environments, including AKS and containerized workloads.
Experience with Infrastructure-as-Code security and policy-as-code frameworks.
Deep understanding of cloud security principles and technologies, such as Identity and Access Management, encryption, network security, container security, and vulnerability management.
Strong programming and analytical skills, problem determination and debugging, attention to detail, teamwork and excellent communication skills.
Fluent English.

Preferred skills:

Experience with security hardening of Azure, Kubernetes.
Experience with Cloud-Native Application Protection Platforms like Microsoft Defender for Cloud, Wiz etc.
Certifications such as AZ-500 (Azure Security Engineer Associate), CKS (Certified Kubernetes Security Specialist), CCSP (Certified Cloud Security Professional) will be a plus.