More jobs:
Cyber Security Analyst, AWS Security
Job in
Swansea, Swansea County, SA1, Wales, UK
Listed on 2026-02-16
Listing for:
Zerothcode Pvt Ltd
Full Time
position Listed on 2026-02-16
Job specializations:
-
IT/Tech
Cybersecurity, Security Manager
Job Description & How to Apply Below
Responsibilities
- Design and enforce least-privilege IAM (roles, SCPs, SSO), key rotation and secrets hygiene (Secrets Manager/SSM).
- Enable & tune Cloud Trail, Config, Security Hub, Guard Duty
; own remediation SLAs with engineering. - Protect data:
KMS with tight key policies,
S3 block-public-access
, EBS/EFS encryption, TLS everywhere. - Container security (EKS/ECS):
IRSA
, image scanning/signing (ECR/Trivy), Pod Security Standards, network policies. - Patch & baseline EC2/OS with SSM Patch Manager/Inspector
; golden AMIs/launch templates.
- Build CI/CD gates:
SAST (Semgrep),
DAST (OWASP ZAP),
dependency & container scans (Snyk/Trivy). - Secure Terraform with tfsec/checkov
, drift detection, mandatory reviews. - Threat-model core CRM flows: authentication/session,
email-to-ticket
, uploads
, time-to-invoice
, Stripe/Pay Pal webhooks
, role-based access, audit logging and rate limits. - Set and document secure defaults (CSP, file type/size limits, webhook signing, CSRF/session policies).
- Centralise logs (Cloud Watch/Open Search/SIEM) and write detections for IAM abuse, exfil and anomalous API calls.
- Build runbooks/playbooks; drive tabletops and continuous improvement; participate in the on-call rota.
- Maintain policies/standards (access control, vulnerability mgmt, backups, key mgmt, vendor risk).
- Support GDPR (data mapping, retention, DPIAs) and contribute to ISO 27001/SOC 2 readiness.
- Degree or equivalent experience in a technical field.
- Experience in a Security Operations
/blue-team role (investigations, incident response and/or penetration testing) in a mid-to-large environment. - Solid understanding of security threats and practical experience detecting & defending against cyber attacks.
- Hands-on with AWS (IAM, KMS, Cloud Trail, Config, Security Hub, Guard Duty, VPC, ALB, WAF/Shield, S3).
- Ability to develop or automate with at least one language:
Python, Go, Type Script or Java (security scripts, tooling, detections). - Comfortable reviewing code/config for security issues (app + IaC/Terraform).
- Familiarity with MITRE ATT&CK
, host/network telemetry (process lists, application logs, VPC Flow/Net Flow). - Experience with streaming/analytics stacks (e.g.,
Kinesis/Kafka
, Open Search/Splunk/ELK). - Container security (EKS/ECS), image pipelines and policy enforcement.
- Exposure to PHP/Laravel stacks (our app), secure file uploads, email piping, and Stripe/Pay Pal webhook security (PCI SAQ-A boundaries).
- Certifications (e.g.,
AWS Security Specialty
, GCIA/GCIH, CISSP) are a plus.
We regularly recruit at many positions. See related jobs here
Zerothcode builds and ships modern software products and delivers client solutions across...
We design and ship modern software across web and mobile—covering SaaS products...
Zerothcode CRM is a self-hosted, modern CRM for agencies, SMEs and service...
Subscribe to our newsletter for the latest updates.Analytics
#J-18808-LjbffrNote that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×