- Advise internal customers on standard processes in design and implementation of secure cloud systems.
- Conduct reviews of various cloud platforms, services, and business initiatives to assess cyber risk.
- Design, develop, and implement security solutions to prevent exposure of cloud resources.
- Design, develop, and implement security requirements for cloud-based systems to meet business requirements with appropriate security controls.
- Maintain, monitor, and deploy security baselines and automation solutions for Azure hybrid cloud identity platform.
- Design and develop cloud-specific security procedures, standards, and policies.
- Provide support with security incidents, helping the Threat Management team prioritize and remediate appropriately.
- Lead continuous improvement and engineering maturity across cloud solutions.
What will you need to be successful
- Bachelors degree in computer science, information systems and/or equivalent formal training or work experience.
- Should have min 5+ years of experience into IT & Information Security
- preferably 3+ years of demonstrated experience in Cloud Security Architecture and/or Engineering & 2+ years of Application Security.
- Strong understanding of different cloud architecture models, hosting, and deployment models.
- Certifications like Microsoft Certified: Azure Solutions Architect Expert and Microsoft Certified: Azure Security Engineer Associate
- Nice to Have Licenses/ Certifications: CISSP, CRISC, CISA, GIAC or equivalent certification, SANS-related certifications Education.
- Strong experience implementing security monitoring, logging, and alerting.
- Experience with securing containerized environments (Docker, Kubernetes).
- Additional experience using API management and/or web app firewall solutions and experience using DevOps solutions such as GitHub etc.
- Experience implementing zero trust security solutions.
- Hands-on experience in automation (PowerShell scripting or equivalent) & knowledge of Cloud Security Alliance framework.
- Knowledge on security concepts (data, network and cloud security). Knowledge of mobile device and Internet of Things (IoT) security.
- Working experience with Agile, SAFe, CI/CD, DevSecOps
- Knowledge of cyber security standard frameworks such as ISO and NIST
- Ability to design, recommend, plan, develop and support implementation of innovative security solutions.
- NICE TO HAVE: Understanding of M365 suit and AWS security mechanisms.
- Understanding of nation and non-nation state actors, hacktivist groups, sophisticated threats, and the kill chain methodology.
- Familiarity with secure coding standard methodologies.
- Strong communication & interpersonal skills, ability to multi-task, strong attention to details, excellent problem solving and follow-up skills required
