Key skills
AWSAzureCloudCyber SecurityKubernetesPythonPowerShellAnalyticsBIPower BIEKSAKSSaaSAgileLeadershipRisk ManagementCollaborationOWASP
About this role
Role Overview
- Own the end-to-end vulnerability management lifecycle across Azure and AWS environments, including triage, prioritisation, and tracking through to remediation.
- Build and maintain Threat & Vulnerability Management (TVM) dashboards and Azure Data Explorer queries to surface real-time risk posture, remediation trends, and SLA adherence.
- Produce and maintain Monthly Security KPI Dashboards covering Microsoft Secure Scores, tooling coverage metrics, and vulnerability remediation performance across all cloud environments.
- Partner with Cloud Engineering and SRE teams to drive remediation of critical and high-severity findings within defined SLAs, escalating blockers and tracking progress to closure.
- Manage and operationalise External Attack Surface Management (EASM) tooling (e.g. BlackKite) to continuously assess and monitor Intapp’s external threat exposure and digital footprint.
- Translate external posture findings into prioritised remediation actions and track outcomes rigorously through to closure, reporting status to security leadership.
- Monitor and report on third-party and supply chain risk signals surfaced through external posture tooling, contributing to broader vendor risk management processes.
- Design, implement, and maintain policy-based security controls for Kubernetes workloads across Azure (AKS) and AWS (EKS) environments.
- Collaborate with DevOps and SRE teams to embed Kubernetes security controls into deployment pipelines and operational runbooks.
- Develop and maintain Microsoft Sentinel data connectors and platform integrations to ensure comprehensive security telemetry coverage across Azure and AWS.
Requirements
- 8+ years in Information Security, Cybersecurity, or related IT disciplines.
- Proven experience owning vulnerability management programmes, including TVM platforms (e.g. Microsoft Defender TVM, Qualys, Tenable, or similar).
- Strong Microsoft Azure security experience; AWS experience beneficial.
- Any hands-on experience with Kubernetes security controls (AKS and/or EKS); working knowledge of policy enforcement engines such as Kyverno or OPA/Gatekeeper is a definite plus.
- Microsoft Sentinel experience, including data connectors, analytics rules, workbooks, and KQL query development.
- Experience building security metrics, dashboards, and KPI reports — including Azure Data Explorer and/or Power BI.
- Familiarity with any External Attack Surface Management (EASM) tooling (e.g. BlackKite, Security Scorecard, or equivalent).
- Proficiency with scripting and automation languages (PowerShell, Azure CLI, Python, or equivalent).
- Managed and automated system security policies, patching and/or monitoring of cloud systems based on security best practices (IaaS, PaaS, SaaS).
- Ideally has designed, developed, implemented and/or monitored Identity and Access Management controls.
- Strong understanding of common security frameworks and standards: NIST, CIS, ISO 27001, OWASP.
- Ability to work effectively with a broad cross-section of technical and non-technical stakeholders to explain, prioritise, and enforce security measures.
Tech Stack
- AWS
- Azure
- Cloud
- Cyber Security
- Kubernetes
- Python
Benefits
- A state-of-the-art facility with a fully stocked kitchen – only a 2-minute walk to/from Gare do Oriente.
- A hybrid work system supporting agile and flexible hours.
- Attractive compensation – including competitive base pay and performance-based variable pay.
- Equity/Stock in Intapp.
- Opportunity to travel to other development centers for product training and cross-site collaboration.
- One-time home office stipend.
- Generous paid parental leave (including adoptive leave), marriage leave, bereavement leave, carer's leave, and paid sick days.
- Meal allowance.
- Reimbursement for training towards continuing education.