This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
At Vodafone, we’re not just shaping the future of connectivity for our customers – we’re shaping the future for everyone who joins our team. When you work with us, you’re part of a global mission to connect people, solve complex challenges, and create a sustainable and more inclusive world. If you want to grow your career whilst finding the perfect balance between work and life, Vodafone offers the opportunities to help you belong and make a real impact. Global Cyber Security’s role is to inspire trust and confidence in our customers by enabling secure connectivity. Our purpose is to proactively protect Vodafone & its customers by reducing the risks posed by security threats to Vodafone’s global technology infrastructure and the sensitive data it holds. As the CNAPP Platform Operations lead/practitioner, you will own the day-to-day operation, stability and continuous improvement of Vodafone’s Cloud-Native Application Protection Platform (CNAPP). You will ensure robust RBAC and identity governance, reliable integration across cloud environments and CI/CD toolchains, that findings are triaged and routed effectively, and that policies and controls are implemented in a pragmatic way that reduces risk without blocking delivery. You will collaborate closely with Cloud Security, Engineering, DevSecOps, SOC and Product teams to embed CNAPP into ways of working and to drive measurable improvements in cloud security posture.
Job Responsibility
Own CNAPP run operations: monitoring, health checks, incident management, vendor escalation and release/change planning
Manage CNAPP as a service: define support model (L2/L3), operational processes, service backlog and continuous improvement cadence
Maintain platform configuration, guardrails and standards across the cloud estate
Design and operate CNAPP RBAC aligned to Vodafone’s security model, ensuring least privilege and clear separation of duties
Define and manage role definitions, permission sets and administrative boundaries (e.g., Platform Admin vs Security Analyst vs Engineering Viewer)
Implement and maintain SSO and identity integration with the corporate IdP (e.g., Entra ID/Azure AD), including MFA, conditional access and lifecycle controls
Own the joiner/mover/leaver process for CNAPP access: provisioning, periodic access reviews, recertification and removal
Manage service accounts/API tokens used for CNAPP connectors and automations, ensuring secure storage, rotation, and auditability
Drive governance for break-glass access and privileged actions: approvals, logging, and post-event review
Ensure CNAPP audit trails and identity events are captured and forwarded where required (e.g., SIEM), supporting investigation and compliance
Coordinate onboarding of new subscriptions/accounts/projects with correct connectors, permissions and data flows
Build/maintain integrations with identity, logging and workflow tooling (SSO/IdP, SIEM, ITSM ticketing, collaboration channels)
Support integration into engineering toolchains (repos, CI/CD, container registries, IaC scanning, image scanning) where in scope
Act as the operational point of contact for engineers and LM stakeholders using CNAPP
Automation/scripting (Python/PowerShell) and API-based integrations
Familiarity with governance frameworks (CIS, NIST, ISO 27001) and mapping controls into platform policy
Experience operating in a federated / multi-market environment
What we offer
Hybrid Work Model - Flexible hybrid work model with 8-10 in-office days per month, managed by team leaders
Vodafone Products and Services - Employees get a mobile phone, free communication plan, data card, and various discounts on services and products
Recognition - Recognition programs for innovative, creative, high-potential employees and exemplary behaviors
Health and Well-being - Well-being Program offers nutrition and psychological consultations, webinars, workshops, and discounts on various services and products
Learning - Access to Communities of Practice and a customizable digital training platform with high-quality content (namely Harvard Business Publishing, Skillsoft and Speexx)
Local and International Mobility - Internal recruitment with local and international rotation opportunities across departments and roles