Cloud Security Engineer

at  LeoVegas Group

Our Cloud Infrastructure Team is a critical Team in our Organisation. As a Cloud Security Engineer in this team, you will focus on securing our cloud infrastructure. Our infrastructure is built on GCP with fully automated infrastructure as code using CI/CD pipelines. Our Cloud Security Engineers work closely with the Infrastructure, NOC, Security and Compliance Team, ensuring the platform is secure, resilient, and available.

ESSENTIAL SKILLS:

• Familiarity with cloud computing platforms (e.g., GCP, Azure, AWS) and containerization technologies (e.g., Docker, Kubernetes) as well as automation tools like Terraform.
• Knowledge of networks and system security, firewalls, WAF and encryption technologies.
• Familiarity with security standards and regulations, e.g. ISO 27001, PCI DSS, GDPR.
• Experience with security tools and technologies, such as SIEM and vulnerability scanners.
• Understanding of cloud security, including cloud infrastructure, IAM and application security.
• Strong communication and collaboration skills, with the ability to work effectively in a cross-functional team environment and influence technical decision-making.
• Minimum 3 Years of experience in a similar role

• Implement and manage security monitoring tools to detect and respond to threats in real-time within cloud environments.
• Collaborate with cloud engineering teams to integrate security best practices into the CI/CD pipeline, ensuring secure deployments.
• Conduct regular security assessments on cloud infrastructure to identify and mitigate risks.
• Develop and maintain security policies and procedures specific to cloud environments, ensuring compliance with industry standards and regulations.
• Monitor and analyse security alerts and incidents to identify potential threats and take appropriate action to mitigate risks.
• Implement and manage identity and access management (IAM) solutions in the cloud, ensuring least privilege access controls are enforced.
• Design and implement incident response plans for cloud-based security breaches, including coordination with relevant stakeholders.
• Stay up to date with the latest security trends and technologies related to cloud computing, and apply this knowledge to improve the organisation’s security posture.