Job Purpose and Background in summary 

This is a fantastic opportunity to join CDP, as we are looking for an Azure Engineer to join our infrastructure team based in London, but will be part of a globalised support team providing a first-class service to the business from multiple locations and time zones. This Azure Engineer role is a new role within CDP, fixed for 12 months. It's an amazing opportunity for you to join a fast-paced and exciting team, where you will be defining and implementing new Azure technologies and security processes which will allow CDP to continue its Azure and security journey.

You will be working within a very friendly, supportive, and motivated team who always aspires to do their best. This role will be part of a team responsible for the creation of CDP’s Cyber Security Plans, policies, processes, cyber training, and roadmap as well as the management of all security risks within CDP, as well as interacting with the business to highlight the importance of cyber security in the workplace. responsibility for all functions relating to the planning, installation, configuration, and operation of the Azure cloud infrastructure.

We are looking for someone who is extremely driven, who understands the importance of being proactive in their approach and who can engage with the business if needed.

About CDP  

CDP is a not-for-profit charity that runs the global disclosure system for investors, companies, cities, states and regions to manage their environmental impacts. The world’s economy looks to CDP as the gold standard of environmental reporting with the richest and most comprehensive dataset on corporate and city action. In 2021 we launched our new five-year strategy: Accelerating the Rate of Change - find out more here. Visit  https://cdp.net/en or follow us @CDP to find out more.   

What do you need to succeed? 

The right candidate will be someone with experience of public cloud infrastructure such as Microsoft Azure including Azure tools such as Azure Backup and Site Recovery, Azure Monitor, Azure Active Directory, Azure Have good knowledge of Azure Infrastructure as code, SaaS, IaaS, PaaS and good understanding of Azure Resource Manager & Azure AD. Configure and manage Containers, CI/CD, Automation, Functions, Serverless, API management, Application gateway, Virtual machines, Virtual networks, Network security groups, express route etc. Design and lead the migration of on-premise services/Servers to Azure Cloud.

You should be keen for a fast-paced environment with opportunities to learn and grow. Excellent verbal and written communication skills. Pragmatic and flexible approach. Excellent interpersonal skills. Flexibility to handle multiple job functions in a constantly changing environment while maintaining focus.

Key responsibilities include:  

• Serves as a key technical resource within the team for the further development & implementation of the Microsoft Security Tools eg, Defender for Endpoint, Defender for Cloud Apps, Defender for Cloud, Sentinel, Firewall.
• Provide security guidance for existing applications/infrastructure and new projects with a view to securing data and apps as per the company's standards.
• Identify, analyse, and resolve systems design weaknesses, prioritizing troubleshooting efforts and pin-pointing resolutions to complex issues surrounding access to systems.
• Ensure that solutions are aligned with business needs, security standards, and industry best practices.
• Design, document, plan, coordinate & execute engineering changes for aligned projects.
• Performs engineering support for points of integration between security technologies and other system.
• Communicates security risks and solutions to CIO, Application Owners, Technical Owners, etc.

You will have the following skills and experience: 

Essential criteria:  

• Three or more years of recent hands-on engineering experience designing, configuring, and deploying security toolsets in Azure namely - Azure Defender Suite, VNets, Express Route, Azure Firewall Advanced, Azure Policy, Sentinel, AAD and AD DS.(Required)
• Three years of relevant security experience
• An understanding and respect for the need of having strong governance, policy, data protection and security measures in place, and a strong sense of compliance with set security guidelines
• Demonstrable experience of hands-on cybersecurity work such as monitoring and securing systems, setting policies, and rolling out patches.
• Hands on experience with PowerShell, Graph API and Net.
  
• Proven experience in building and configuring Security tool sets
• Analytical and problem-solving skills.
• Strong understanding of VNets, Sentinel, Defender Suite, Azure Landing Zones, Azure Policy, Firewall Advanced
• Strong understanding & experience of using deployment pipelines (Infrastructure as Code)
• Strong understanding of AD Directory Services, Azure Active Directory, Identity Governance, IAM, PIM, Azure Identity Protection Suite, Microsoft Intune
• Experience in single sign on (SSO) configuration with various IdPs (Azure, AWS)
• A positive and enthusiastic team player with a high level of self-motivation and drive, committed to achieving high standards 
• Able to produce and develop documentation and standard operating Procedures
• Excellent writing, verbal, and presentation skills in English

This is a full time/part-time role based at CDP’s London office reporting to the Global Head IT Operations.  

Salary and benefits:  £58,000 - £62,000 per annum, 30 days’ holiday plus bank holidays, generous non-contributory pension provision, Employee Assistance Programme, life assurance, training and development, flexible working opportunities and other benefits.

Interested applicants must be eligible to work legally in the UK. We cannot sponsor this role.

Before you apply 

We’ll only use the information you provide to process your application. For more details on how we use your information, see our applicant’s privacy notice. By uploading your CV and covering letter, you are permitting CDP to use the information you have provided for recruitment purposes.  

How to apply: 

Please upload your CV in the application form along with a covering letter as an additional document setting out how you meet the required skills and experience or key responsibilities, which should be no more than two pages.  The deadline is 14th May 2023