Our company's Cloud Security Engineer ensures the security of cloud infrastructures and systems. The role requires expertise in cloud security, DevSecOps, and the NIST framework. The engineer will implement and maintain security measures across our company’s cloud environments, collaborating with teams to assess risks and develop mitigation strategies.
Responsibilities:
- Design and maintain cloud security architectures in Azure/Entra ID, AWS, and GCP.
- Develop and enforce cloud security policies and guidelines.
- Configure security controls and tools to monitor and respond to threats.
- Implement access controls and network security measures.
- Manage IAM policies, including RBAC and least privilege access.
- Conduct regular security reviews and compliance checks.
- Analyze and prioritize security findings and remediate vulnerabilities.
- Assist with incident response and investigate security incidents.
- Ensure compliance with regulatory requirements and industry standards.
- Support compliance audits with documentation and insights.
- Guide development teams on secure coding and cloud security best practices.
- Monitor cloud environments for incidents and compliance violations.
- Generate reports on cloud security metrics and trends.
Qualifications:
- Bachelor’s degree in Computer Science or related field; advanced degree preferred.
- 5+ years of experience in cloud security, with expertise in Azure/Entra ID (AWS and GCP a plus).
- Relevant certifications (e.g., CISSP, CCSP, Microsoft Certified Azure Security Engineer Associate) preferred.
- In-depth knowledge of cloud security principles and best practices.
- Hands-on experience with cloud security tools and technologies.
- Strong analytical skills for assessing security issues and proposing solutions.
- Excellent communication and teamwork skills.
- Ability to work independently and manage multiple projects.
- Knowledge of DevSecOps principles is a plus.