about 4 hours ago
Responsibilities
- Lead the maturity of Cloud and Enterprise Security programs by identifying infrastructure gaps.
- Design and maintain cloud security controls using Infrastructure as Code tools like Terraform.
- Implement security baselines for containerized workloads and orchestration platforms.
- Integrate automated security testing tools into engineering deployment pipelines.
- Deploy and configure enterprise security tools and cloud-native platforms.
- Oversee the cloud vulnerability scanning program and coordinate remediation processes.
- Design scalable logging strategies and advanced SIEM integrations.
- Lead security architecture reviews and threat modeling sessions.
- Conduct advanced Digital Forensics and Incident Response activities.
- Author cloud security policies and map technical controls to compliance frameworks.
Requirements
- 6+ years of experience in Cloud Security Engineering or Security Operations.
- Deep technical knowledge of security controls in AWS and GCP environments.
- Experience with Infrastructure as Code tools like Terraform or CloudFormation.
- Practical experience securing Kubernetes environments.
- Experience with enterprise identity management solutions like Okta.
- High proficiency in security automation using scripting languages.
- Strong understanding of SIEM platforms and log analysis.
- Knowledge of cloud DFIR methodologies and the MITRE ATT&CK framework.
- Relevant cloud security certifications such as CCSP or AWS Certified Security - Specialty.
- Familiarity with security frameworks like NIST or ISO 27001.
- Strong communication skills and ability to collaborate with various stakeholders.