Cloud Security Engineer

Job Summary:

The Cloud Security Engineer will be responsible for designing, implementing, and maintaining security measures that protect cloud-based systems, data, and infrastructure. The ideal candidate will have deep knowledge of cloud platforms, security best practices, and hands-on experience with cloud security tools and frameworks.

Key Responsibilities:

• Cloud Security Architecture: Design and implement security architectures for cloud-based applications and infrastructure across platforms like AWS, Azure, or Google Cloud.
• Security Best Practices: Ensure that cloud environments are built and maintained according to best practices in security and compliance (e.g., NIST, CIS Benchmarks).
• Incident Response: Lead and coordinate incident response activities for cloud security breaches and vulnerabilities.
• Automation and DevSecOps: Integrate security tools and practices into the CI/CD pipeline to enable automated security testing and deployment.
• Vulnerability Management: Regularly assess cloud environments for vulnerabilities, and work with the relevant teams to mitigate risks.
• Identity and Access Management (IAM): Manage and enforce IAM policies to ensure secure access to cloud resources.
• Security Monitoring: Implement and manage security monitoring solutions to detect, prevent, and respond to threats.
• Compliance: Ensure compliance with relevant regulatory frameworks (e.g., GDPR, HIPAA, PCI-DSS) within cloud environments.
• Documentation: Create and maintain comprehensive security documentation, including policies, procedures, and standards.
• Collaboration: Work closely with DevOps, IT, and development teams to ensure that security is embedded throughout the cloud infrastructure and application lifecycle.

Key Requirements:

• Education: Bachelors degree in Computer Science, Information Security, or related field (or equivalent experience).
• Experience: Minimum of 7 years of hands-on experience in cloud security, preferably in AWS, Azure, or Google Cloud environments.
• Certifications: Relevant certifications such as AWS Certified Security - Specialty, Microsoft Certified: Azure Security Engineer, Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), etc.
• Technical Skills:
• Strong understanding of cloud security principles and architecture.
• Experience with cloud security tools such as AWS GuardDuty, Azure Security Center, GCP Security Command Center, etc.
• Proficiency in scripting and automation (e.g., Python, Bash).
• Experience with security monitoring and SIEM solutions.
• Knowledge of IAM, encryption, network security, and vulnerability management.
• Soft Skills:
• Excellent communication and collaboration skills.
• Strong problem-solving and analytical abilities.
• Ability to work in a fast-paced, dynamic environment.

Preferred Qualifications:

• Experience with DevSecOps practices and tools.
• Familiarity with container security (e.g., Docker, Kubernetes).
• Knowledge of serverless security.

Job Type: Full-time

Pay: 494,015.81 - 1,851,958.67 per year

Schedule:

• Day shift

Education:

• Bachelor's (Required)

Experience:

• total work: 8 years (Required)

Work Location: In person