Job Title Lead Cloud Engineer Location Asda House Employment Type Full time Contract Type Permanent Hours Per Week 37.5 Salary Competitive salary plus benefits Category Software Engineering Closing Date 30 September 2024 “Everything about Asda” We are a values-led organisation. As such we encourage everyone to be open and honest. We work creatively and collaboratively, valuing everyone’s input. Our collaborative culture, the size of our business and our belief in the empowerment of the individual means opportunities at Asda are abundant. We conduct £300m worth of transactions every week. Our website handles over 2 million transactions a month. We have more than 145,000 dedicated Asda colleagues ensuring that our customers are at the heart of everything we do. “Everything you’ll love” Minimum 24 days annual leave per year plus 8 bank holidays – Making sure you take time for your self and switch off 4 weekly pay – which means you get an extra payday a year Digital GP and Wellbeing sessions – Asda genuinely cares so we create a culture where our people can perform at their best, the physical health and mental wellbeing of all our people is very important to us Discount off your shopping at Asda and George - with extra discounts running throughout the year – really makes a difference, saving the colleagues an average of £700 a year Career development and apprenticeship and graduate schemes - we want our colleagues to excel and grow with our business. (Link to grad scheme on Asda page) Free city centre parking – you can also use it outside working hours Plus, much more “That’s more like it” We are searching for an individual with practical expertise in Web Application Firewall (WAF) and rule management. This person should be able to modify Terraform scripts based on data analysis and update Cloudflare's WAF rules. Profound knowledge of Azure and Cloudflare is indispensable, as is an understanding of various service offerings to devise secure solutions—and familiarity with scripting languages. The ideal candidate will have extensive knowledge of continuous integration and deployment practices, utilising tools like GitHub and Azure DevOps to optimise deployment processes—a firm grasp of cloud security best practices, including OWASP and Secure by Design. Key Responsibilities: Hands-on experience in Web Application Firewall (WAF) and rule management to revise Terraform scripts based on data analysis decisions and update Cloudflare's WAF rules. Must have in-depth knowledge of Azure and Cloudflare, is crucial. Understanding the various service offerings and how to combine them to provide a secure solution. Familiarity with scripting languages such as Bash / Powershell essential and experience in one of DotNet / Java / Python / TypeScript / JavaScript preferred Excellent knowledge of continuous integration and continuous deployment practices and tools such as GitHub and Azure DevOps to manage and streamline deployment processes Security Awareness: of cloud security best practices, OWASP; Secure by Design etc and how to implement those within a Cloudflare and Azure context A comprehensive understanding of networking and connectivity is indispensable for the prospective candidate, who must possess a thorough comprehension of virtual networks, VPNs, content delivery networks (CDN), and hybrid cloud connectivity. The ideal candidate will lead our cloud infrastructure's design, implementation, and maintenance, including ADB2C, load balancing, web application firewall, Terraform, storage, networking, and security resources. Collaboration with the security team is required to implement robust security controls, policies, and monitoring across our cloud environment. Monitoring cloud resources to identify performance bottlenecks and optimise for cost and efficiency is imperative. Provide technical guidance and mentorship to the engineering teams on best practices for cloud security, compliance, and operational efficiency. Responsible for investigating security incidents, performing root cause analysis, and implementing remediation measures to prevent future occurrences. Documenting and maintaining a comprehensive knowledge base for Cloud technology, Terraform, and security-related processes and configurations is vital to this role. Proficiency in incident response and troubleshooting of Cloudflare WAF issues, implementation of mitigation strategies, and effective communication with stakeholders Preferred Skills: Cloud Service Providers Proficiency (Azure, CloudFlare) Infrastructure as Code (IaC), Bash / Powershell essential and experience in one of DotNet / Java / Python / TypeScript / JavaScript preferred Continuous Integration and Continuous Deployment (CI/CD) Networking and Security Fundamentals Monitoring, Logging, and Operational Troubleshooting Cloud Architecture Design and Implementation Performance Tuning and Optimisation LI-DW1 Work Where it Works Our hybrid way of working gives you the choice to work where it works. This enables you to chose where you’ll be the most effective. It offers a mix of working from home and in an office environment that works best for you and your team. You will also get an excellent benefits package including; - • Discretionary company bonus • £5,700 company car or car allowance • Company pension up to 7% matched • 10% colleague discount, free parking and many additional rewards. We want all colleagues to be able to bring their best and true selves to work, every day. Simply put, we want our colleagues to be Proud to be Asda and proud to be themselves