ABOUT US:

We are champions of rail, inspired to build a greener, more sustainable future of travel. Trainline enables millions of travellers to find and book the best value tickets across carriers, fares, and journey options through our highly rated mobile app, website, and B2B partner channels.

• Cloud Security Architecture & Design: Support the design, implementation, and maintenance of robust security frameworks and controls to protect cloud infrastructure in our AWS environment. Ensure that security is seamlessly integrated into every layer of the cloud architecture, from network configuration to identity management.
• Container & Orchestration Security: Partner with Cloud Engineering, DevOps, and Platform teams while being a key stakeholder in the architecture and implement secure containerised environments using platforms like Docker, and ECS. Focus on vulnerability mitigation, compliance automation, and secure orchestration practices to ensure container workloads are resilient and meet organisational security requirements.
• Security Policy Development & Enforcement: Develop, document, and enforce comprehensive cloud security policies, standards, and procedures that govern cloud infrastructure, services, and containerised workloads. Drive compliance initiatives for security frameworks such as CIS Benchmarks, NIST, and SOC2, ensuring policies are consistently applied across the organization.
• Cloud Migration & Native Infrastructure Support: Provide expert guidance and hands on support to teams migrating workloads and applications to cloud-native infrastructure, ensuring security considerations are fully addressed throughout the migration lifecycle. Assist in the adoption of best practices for securing cloud-native architectures
• Security Integration into SDLC & CI/CD Pipelines: Collaborate with Development, Platform, and QA teams to integrate security best practices into the software development lifecycle (SDLC) and CI/CD pipelines. Ensure security is prioritised through automation tools, security testing, and vulnerability scanning as part of the continuous delivery process.
• Security Assessments & Incident Response: Conduct security assessments, vulnerability scans and risk analyses to identify and address potential security weaknesses within cloud environments. Support the security operations team in incident response efforts related to cloud security incidents, ensuring timely detection, containment, and remediation.
• Staying Current on Threat Intelligence & Industry Trends: Continuously research and stay up to date on emerging threats, vulnerabilities, and security trends within cloud infrastructure, container security, and DevSecOps practices. Regularly evaluate new security tools, frameworks, and technologies to enhance the organisation’s cloud security posture.
• Security Training & Mentorship: Provide ongoing cloud security training, guidance, and mentorship to Engineering and Platform teams, fostering a security-first culture within the organisation. Ensure that teams are well-equipped to identify, understand, and mitigate cloud security risks and align with established security standards and frameworks.