1. Design, implement, and manage security solutions for our AWS and MS Azure environments, including Identity and Access Management (IAM), network security, encryption, logging, and monitoring.
2. Conduct regular audits and compliance assessments of cloud environments, identifying and remediating security risks and vulnerabilities.
3. Develop and enforce security policies, standards, and procedures ensuring compliance with Cyber Security Frameworks, industry regulations, and best practices.
4. Collaborate with Infrastructure and Application development teams to integrate security controls in the cloud using standardized configuration tools.
5. Implement and manage standard AWS and Azure security tools including but not limited to AWS Tower, GuardDuty, Inspector, CloudTrail, AWS WAF, AWS KMS, SecurityHub, Entra ID, Azure Security Center, Azure ATP, and Azure Policy.
6. As to best practices, design, Implement and manage Entra ID Identity and Access Management including governance, role-based access controls, single sign-on integrations, monitoring, etc.
7. Monitor cloud environments for security incidents and anomalies and respond to suspected incidents in a timely manner.
8. Provide security expertise and support to internal teams during the design, development, and deployment of infrastructure, applications, and services.
9. Work with external partners and customers to address security-related issues and escalations.
10. Assist with sales enablement including requests for proposal, updating documentation, and providing responses in timely manner.
Qualifications:
1. Extensive hands-on experience (4+ years) designing, implementing, and securing AWS or MS Azure. Experience in both AWS and Azure is a plus.
2. In-depth knowledge of cloud security best practices, including IAM policies, cloud configurations, cloud security tools, logging, monitoring, and alerting.
3. Experience with networking in cloud environment native security controls including network access controls, next generation firewalls and web application firewalls.
4. Excellent analytical and problem-solving skills, with the ability to troubleshoot and resolve security issues quickly.
5. Demonstrated experience as a cloud security subject matter expert that embraces a speak up culture to drive continuous improvement.
6. Strong interpersonal and communication skills with the ability to work effectively with cross-functional and global teams.
7. Experience in automation and orchestration tools and proficiency in scripting languages is a plus.
8. Cloud based certifications in AWS and Azure are a plus.
9. Security certifications (CISSP, CCSP, CCSK, etc.) are a plus.
