JOB OVERVIEW

Arm is on a mission to develop ground breaking security solutions that protect our cloud and network environments, ensuring a resilient and secure infrastructure. With the rapid evolution of security threats, we require a forward-thinking leader to drive security operations, optimise technical controls, and improve the protection of Arm’s digital assets.
This role leads the implementation, automation, and improvement of security technologies across cloud and network environments. You will define security strategy, streamline operations, and reduce cyber risks while supporting business agility.

REQUIRED SKILLS AND EXPERIENCE:

• Demonstrated ability in cloud security, network security, or security operations, with expertise in securing AWS, Azure, and GCP environments and running security technologies like CNAPP and encryption.
• Deep technical knowledge of enterprise and network security, including firewalls, VPNs, NAC, intrusion prevention systems, EDR, AV, and DLP, with hands-on experience in incident detection, response, and forensic analysis. Across various operating systems, Mac, Linux, Windows.
• Ability to assess and mitigate security risks, aligning with industry frameworks such as NIST, CIS, and CSA Cloud Controls Matrix, and experience with ITIL processes, risk management, and security governance.
• Strong analytical and communication skills, capable of translating complex security concepts for non-technical colleagues and senior leadership, while effectively leading security projects using Agile or PRINCE2 methodologies!

“NICE TO HAVE” SKILLS AND EXPERIENCE:

• Security certifications such as CISSP, CISM, CCSP, AWS Certified Security, Azure Security Engineer Associate, or Google Cloud Security Engineer.
• Experience working in enterprise security teams, including Cyber Defense Operations and Governance, Risk & Compliance.
• Familiarity with zero-trust architecture and secure access models!

• Lead the deployment, optimisation, and automation of security controls across cloud and network infrastructures, improving security posture and aligning with business objectives.
• Lead and be responsible for security technologies, including CNAPP, EDR, AV, DLP, VPN, and firewall policies, ensuring robust protection and improvement.
• Implement security standard methodologies for cloud-native applications and infrastructure in AWS, Azure, and GCP, integrating security seamlessly into DevOps workflows.
• Develop and make sure security policies, procedures, and frameworks, ensuring compliance with industry standards.
• Drive security automation initiatives, using Infrastructure as Code (IaC) tools like Terraform and Ansible, and integrating security tools for real-time monitoring and response.
• Collaborate with internal teams and external vendors, engaging third-party security providers and evaluating emerging security technologies to strengthen Arm’s security ecosystem.
• Support security awareness and training initiatives, and ensuring best practices are embedded into security operations and enterprise security strategy.