Join our digital revolution in NatWest Digital X
In everything we do, we work to one aim. To make digital experiences which are effortless and secure.
So we organise ourselves around three principles: engineer, protect, and operate. We engineer simple solutions, we protect our customers, and we operate smarter.
Job Description
Our people work differently depending on their jobs and needs. From hybrid working to flexible hours, we have plenty of options that help our people to thrive.
This role is based in India and as such all normal working days must be carried out in India.
Join us as a Lead Platform Engineer
- Hone your existing technical expertise and take on a role with great career development potential and make a real difference for our business
- This is your chance to have real influence and see your decisions producing tangible results in a critical role
- Here, you can expect to enjoy a collaborative and supportive culture, with a big focus on personal and professional development
- We're offering this role at vice president level
What you'll do
In this hands-on leadership role, you'll champion a DevSecOps first culture, as you manage a high-performing team of Cloud Security Engineers to deliver secure, scalable solutions across our platforms. You'll be accountable for securing applications and the Azure cloud estate by preventing vulnerabilities early, and leading effective security detection and response.
Operating a security happens on day one mindset, you'll embed controls into engineering workflows through DevSecOps and operating a proactive SecOps capability. Working closely with our Principal Engineers, architects in the domain and other key stakeholders, you'll develop a deep understanding of how our solutions support the business and find new way to improve things .
Day-to-day, you'll:
- Implement secure-by-design patterns using automated, policy-driven controls integrated into CI/CD pipelines across Azure
- Own vulnerability management and penetration testing activities, ensuring remediation is risk-based and aligned with PCI DSS where applicable
- Lead Azure security operations, including threat detection, alert triage, investigation, and incident response using SIEM/SOAR and automation to reduce MTTD/MTTR
- Define and maintain security policies, standards, and threat modelling practices while driving continuous improvement across security tooling and processes
The skills you'll need
We're looking for an experienced Azure cloud security and SecOps professional with hands-on ownership of security design, detection, and incident response in modern DevSecOps environments. What's more, you're able to communicate technical concepts in a simple way for non-technical people .
Additionally, you'll demonstrate:
- Azure experience, including hands-on ownership of security engineering and operations using Microsoft Defender for Cloud, Microsoft Sentinel (SIEM/SOAR), Azure Policy, and continuous compliance monitoring such as PCI DSS
- Strong knowledge of Azure DevOps, GitHub Advanced Security, CI/CD integration, and compliance frameworks such as GDPR and PCI DSS
- Hands-on experience of securing containerised workloads and AKS, including vulnerability management, runtime security, and Infrastructure as Code using Bicep
- Experience of information security policies and practices within the financial sector
- Strong stakeholder management skills and communication skills
