Cloud Security Engineer - IAM and Data Security - 100 %

at  Sword Services

To strengthen our team in Geneva, we are looking for a Cloud Security Engineer – IAM and Data Security.

RESPONSABILITIES

• Develop a comprehensive security design to guide the implementation and management of cloud-based information security controls. This design will address the PCT RSP’s and our client’s security requirements, encompassing IAM, cryptography, Data Security posture management, application security, and monitoring.
• Collaborate proactively with the RSP Project Manager and Senior Information Security Architect, along with other crucial stakeholders, to effectively establish, execute, and adjust security controls in alignment with the project’s strategic architecture and detailed design. This collaborative effort is aimed at ensuring seamless integration and configuration of security measures, thereby guaranteeing adherence to project timelines and compliance with specified requirements, all while maintaining the highest standards of efficiency and project alignment.
• Develop high-quality comprehensive post-implementation documentation, including transition-to-operation guides, security administration procedures, and hands-on training materials for security administrators.
• Collaborate with the Senior Information Security Architect, Information Security Engineer, and Cloud Solution Architect to develop detailed designs and operational transition documents for the RSP Project. This will align with the approved security architecture and patterns. Also, create comprehensive procedures for security and technical administrators for tasks that are not fully automatable.
• Work with the Senior Information Security Architect, the Information Security Engineer, and the Cloud Solution Architect to deploy, enable, configure, integrate, and initially administer all the required cloud-based information on Azure and AWS.
• At least 5 years of experience in the Information technology engineering with a minimum of 3 Years of experience as Security Engineer/Specialist, 3 years in cloud security Engineer or similar position in regulated sectors (finance preferred).
• Advanced university degree in information security, computer science, engineering, mathematics, business, or related discipline.
• Familiarity with a broad range of technologies supplemented by in-depth knowledge in AWS and AZURE security services, mechanisms, and features.
• Possess extensive expertise in Cloud Security Engineering, Cloud Security Architecture, Cloud IAM, Hybrid Multi-Cloud Strategy, and Cloud Automation technologies. Familiar with cloud compliance and governance frameworks like NIST, CIS, CSA CCM, and AWS Well-Architected Framework. Skilled in Information Security Engineering, Security Compliance as code, technical documentation, and requirements and architectural analysis.
• The ideal candidate should have significant experience in automating security solution deployments on AWS and Azure, utilizing their native Infrastructure as Code (IaC) for efficient setup. This includes deep knowledge of AWS and Azure security tools, expertise in integrating various cloud-native security services, and skills in optimizing for performance and scalability. They should also be adept at technical documentation, understanding architectural frameworks, and providing advanced IT support.
• Skilled in detailed designing, deploying, enabling, configuring, testing, tuning, automating, administering encompassing IAM, cryptography, Data Security posture management, application security, control on AWS/Azure security controls.
• Adept in IT Security management, focusing on infrastructure, network, endpoints, containers, serverless tech with expertise on at least 3 of the domains listed above.
• Experience in scripting for security automation, Microsoft Purview, CSPM, Zcaler SASE, LogRhythm, ISO27001
• Fluent in English, French is a plus.
• AWS Certified Security Specialist certification
• AWS Certified Solution Architect Associate
• CISSP is a plus
• ITIL Foundation is plus
• GIAC Public Cloud Security – SEC 510 is a plus
• SEC540: Cloud Security and DevSecOps Automation is plus
• SEC522: Application Security: Securing Web Apps, APIs, and Microservices is a plus

Please refer the Job description for details