JOB SUMMARY

As a Cloud Security Engineer, you will play a pivotal role in safeguarding the organization’s cloud environments. Your primary focus will be to design, implement, and manage security solutions specifically tailored to cloud infrastructure, ensuring the confidentiality, integrity, and availability of data and services hosted in the cloud. You will collaborate closely with compliance teams to align cloud deployments with relevant regulations and best practices, and partner with IT and DevOps to secure endpoints, applications, and network configurations within cloud platforms. Additionally, you will champion the security-by-design approach in all stages of cloud service development and deployment, integrating robust security controls and continuous monitoring to proactively address evolving threats.

EDUCATION/TECHNICAL REQUIREMENTS

Bachelor’s degree in computer science, engineering, Cybersecurity, or related field.

EXPERIENCE

• 5-7 years of experience in public cloud security, including AWS, Azure, and Oracle Cloud Infrastructure (OCI).
• Hands-on experience with DevOps practices and security integration into CI/CD pipelines.
• Working knowledge with Infrastructure as Code (IaC) tools like Terraform/Ansible for enforcing security configurations.
• Experience with DevSecOps pipelines and automated security testing tools.
• Advanced experience deploying and customizing security tools such as WAFs, endpoint security, encryption, file integrity monitoring and data loss prevention solutions in Cloud environments.
• Understanding of encryption, key management and tokenization in cloud environments.
• Strong engineering skills with Windows Server environments, DNS, DHCP, Active Directory, and network switching.
• Working knowledge of CloudFlare and Crowdstrike eco system.
• Familiarity implementing security controls to comply with HIPAA, SOC2, and SOX assessments/audits.

• Design and implement secure cloud architectures and controls for infrastructure, applications, and data across multi-cloud environments.
• Review, enhance, and enforce identity and access management (IAM), encryption, and network security best practices.
• Provide expert guidance on security during engineering, IT, and application design reviews.
• Configure, maintain, and review Web Application Firewall (WAF) settings and continuously monitor related security logs.
• Develop and enforce security policies, standards, and best practices for cloud deployments, ensuring alignment with industry regulations.
• Conduct regular security assessments, vulnerability scans, and penetration tests to identify and mitigate risks in cloud environments.
• Monitor and respond to security incidents utilizing cloud-native and SaaS security tools, as well as threat intelligence feeds.
• Configure, optimize, and analyze logs and events using Security Information and Event Management (SIEM) solutions like Splunk and Azure Sentinel.
• Collaborate with DevOps and engineering teams to incorporate security automation into cloud operations
• Work closely with development, IT, and operations teams to integrate security into the software development lifecycle (SDLC) and CI/CD pipelines.