Cloud Security Engineer

at  Graebel Companies Inc

Are you ready to open a world of opportunity in talent mobility? Our clients include some of the largest and most recognized brands in the world. They’re innovators and leaders in their industries, making life-enhancing breakthroughs every day. We help them tap into those opportunities by placing their exceptional people where they need to be, anywhere in the world. When it comes to service, we set the bar for exceptional … and then we raise it with fresh ideas, leading tools and innovative approaches, and it’s all grounded in our values of truth, love, and integrity. We call it People-first Mobility. We’re looking for exceptional people who share those values along with our passion for delivering the highest levels of service. If that sounds like you, and if you’re ready for a new career opportunity, we’d like to hear from you! Here’s to the world ahead.
Graebel Companies is seeking a skilled and experienced Cloud Security Engineer to join our dynamic and global team and take ownership of securing cloud infrastructure in both AWS and MS Azure. The ideal candidate will have deep technical experience in cloud security and security best practices, with a proven record of accomplishment of implementing security controls to protect cloud environments. This position will play a key role in designing, implementing, and maintaining security measures to safeguard our cloud infrastructure and data assets.

QUALIFICATIONS:

1. Extensive hands-on experience (4+ years) designing, implementing, and securing AWS or MS Azure. Experience in both AWS and Azure is a plus.
2. In-depth knowledge of cloud security best practices, including IAM policies, cloud configurations, cloud security tools, logging, monitoring, and alerting.
3. Experience with networking in cloud environment native security controls including network access controls, next generation firewalls and web application firewalls.
4. Excellent analytical and problem-solving skills, with the ability to troubleshoot and resolve security issues quickly.
5. Demonstrated experience as a cloud security subject matter expert that embraces a speak up culture to drive continuous improvement.
6. Strong interpersonal and communication skills with the ability to work effectively with cross-functional and global teams.
7. Experience in automation and orchestration tools and proficiency in scripting languages is a plus.
8. Cloud based certifications in AWS and Azure are a plus.
9. Security certifications (CISSP, CCSP, CCSK, etc.) are a plus.
10. To be considered you need to be legally eligible to work in the Czech Republic

1. Design, implement, and manage security solutions for our AWS and MS Azure environments, including Identity and Access Management (IAM), network security, encryption, logging, and monitoring.
2. Conduct regular audits and compliance assessments of cloud environments, identifying and remediating security risks and vulnerabilities.
3. Develop and enforce security policies, standards, and procedures ensuring compliance with Cyber Security Frameworks, industry regulations, and best practices.
4. Collaborate with Infrastructure and Application development teams to integrate security controls in the cloud using standardized configuration tools.
5. Implement and manage standard AWS and Azure security tools including but not limited to AWS Tower, GuardDuty, Inspector, CloudTrail, AWS WAF, AWS KMS, SecurityHub, Entra ID, Azure Security Center, Azure ATP, and Azure Policy.
6. As to best practices, design, Implement and manage Entra ID Identity and Access Management including governance, role-based access controls, single sign-on integrations, monitoring, etc.
7. Monitor cloud environments for security incidents and anomalies and respond to suspected incidents in a timely manner.
8. Provide security expertise and support to internal teams during the design, development, and deployment of infrastructure, applications, and services.
9. Work with external partners and customers to address security-related issues and escalations.
10. Assist with sales enablement including requests for proposal, updating documentation, and providing responses in timely manner.