Cloud Security Engineer

Cloud Security Engineer

We are seeking a skilled and experienced Cloud Security Engineer to join our growing security team. In this role, you will be responsible for securing our cloud infrastructure, ensuring that all cloud services and applications are designed, implemented, and operated in a secure manner. The ideal candidate will have hands-on experience with cloud security best practices, security tools, risk management, and compliance standards for public cloud platforms such as AWS, Azure, or Google Cloud.

This is an exciting opportunity to help shape the security posture of our cloud environments, mitigate risks, and protect critical data and systems in a rapidly evolving cloud landscape.

Key Responsibilities:

• Cloud Security Architecture: Design and implement security architectures for cloud-based environments, ensuring compliance with security policies, standards, and best practices.
• Security Monitoring: Deploy and manage security monitoring tools for cloud environments, including log collection, intrusion detection, and vulnerability management.
• Incident Response & Remediation: Respond to and investigate security incidents in cloud environments. Perform root cause analysis and lead remediation efforts.
• Risk Management: Identify, assess, and mitigate risks associated with cloud infrastructure, applications, and services. Provide recommendations for improving security controls.
• Cloud Security Automation: Automate cloud security processes (e.g., provisioning, monitoring, patching, and incident detection) to improve operational efficiency and security posture.
• Compliance & Audits: Ensure that cloud environments are compliant with regulatory requirements (e.g., GDPR, HIPAA, SOC 2, ISO 27001) and conduct regular audits and assessments.
• Collaboration & Training: Collaborate with DevOps, Infrastructure, and development teams to implement secure cloud practices. Provide guidance and training on cloud security best practices.
• Vulnerability Management: Continuously assess and patch vulnerabilities in cloud-based applications, services, and systems.
• Threat Intelligence: Stay up to date with the latest cloud security threats, trends, and technologies. Integrate threat intelligence into security practices and tools.

Key Requirements:

• Experience: 3 years of experience in cloud security or information security roles, with a strong focus on cloud platforms (AWS, Azure, Google Cloud).
• Knowledge: In-depth knowledge of cloud security concepts, architectures, and best practices. Familiarity with industry standards like NIST, CIS, and OWASP.
• Technical Skills:
• Experience with security tools for cloud platforms (e.g., AWS Security Hub, Azure Security Center, Google Cloud Security Command Center).
• Proficiency in scripting languages (e.g., Python, Bash, PowerShell) for automation and security tooling.
• Hands-on experience with Identity and Access Management (IAM), encryption, network security, and cloud-native security services.
• Problem Solving: Strong analytical and problem-solving skills, with the ability to identify security issues and implement solutions in a cloud-based environment.
• Communication Skills: Excellent verbal and written communication skills, with the ability to effectively collaborate with cross-functional teams and present security concepts to non-technical stakeholders.
• Education: Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent work experience).

Preferred Qualifications:

• Familiarity with container security (e.g., Kubernetes, Docker) and serverless computing environments.
• Experience with cloud network security (e.g., VPC, subnets, firewalls, VPNs, etc.).
• Understanding of security in CI/CD pipelines and DevSecOps practices.
• Experience with cloud disaster recovery and business continuity planning.