Join Sumitomo Mitsui Finance Dublin Limited (SMFD) as a Cloud Security Automation Specialist (VP), shaping and safeguarding its hybrid IT landscape across on-prem, Azure, GCP, and cloud-native platforms.
This role is based in Dublin, with a relocation allowance of an additional month’s salary on offer for candidates that are open to relocating for this opportunity.
You’ll embed security into high-impact projects from the ground up, design scalable and reusable “as code” controls, and drive automation to streamline security across CI/CD, IaC, and cloud environments.
Sumitomo Mitsui Finance Dublin Limited (SMFD) is a wholly owned subsidiary of SMBC and is growing rapidly as a Centre of Excellence for the bank’s universal banking business across EMEA. It provides a range of technology and operational support services, aligned to SMBC’s growth, innovation, and transformation strategies.

ABOUT THE REQUIREMENTS:

• Strong knowledge of industry frameworks (NIST CSF, ISO/IEC 27001, CIS Benchmarks) and core security principles (Zero Trust, Least Privilege, Network Segmentation).
• Proven experience with Azure/GCP security, CSPM, CWPP, Policy as Code (Azure Policy, OPA), and cloud-native security tooling.
• Proficiency in scripting/programming (Python, C#, PowerShell) for automation.
• Familiarity with architectural patterns (Multi-Tier, Microservices, Event-Driven) and frameworks (TOGAF, SABSA).
• Experience securing IaC pipelines, CI/CD integrations, and applying DevSecOps practices.
• Awareness of emerging technologies (AI/ML, Quantum Computing) and their security implications are strong advantages
• Hold the right to work in Ireland and happy to be workingon site in Dublin (hybrid working model)
  All third party applications will be managed by Robert Walters.

• Conduct security design reviews, assess architectures against policies/standards, and recommend mitigations.
• Maintain and evolve a unified Security Reference Architecture and reusable design patterns.
• Design and enhance security controls to address gaps, emerging threats, and compliance requirements.
• Act as SME for Azure/GCP security; design cloud-compatible controls, templates, and “as code” modules.
• Collaborate with engineering teams to embed security into CI/CD, IaC, and DevSecOps pipelines.
• Lead threat modelling exercises and train non-security stakeholders in its application.