Job SummaryWe are seeking a proactive and skilled Cloud Security Engineer to join our team. The ideal candidate will be responsible for designing, implementing, and managing security controls and best practices within our cloud environment, with a focus on AWS. This role will be critical in protecting our cloud infrastructure, applications, and data by utilizing a range of security tools and platforms, including CWPP, CSPM, Firewall, DAC solution.
Key Responsibilities- Cloud Security Posture Management (CSPM): Configure, monitor, and manage AWS security services such as AWS Config, AWS Security Hub, and AWS GuardDuty to ensure continuous compliance and identify potential security threats and misconfigurations.
- Cloud Workload Protection (CWPP): Implement and manage a Cloud Workload Protection Platform to secure workloads (containers, virtual machines, serverless functions) running in the cloud.
- Network and Web Application Firewalls: Design, deploy, and maintain security policies and rules on AWS Firewall and AWS WAF to protect our network and web applications from common exploits and threats.
- Incident Response: Investigate security incidents, perform root cause analysis, and lead remediation efforts within the cloud environment.
- Automation: Develop and maintain security automation scripts and tools using languages like Python, Bash, or PowerShell to streamline security operations and response.
- Vulnerability Management: Conduct regular vulnerability scanning and penetration testing, and work with development teams to prioritize and patch identified vulnerabilities.
- Policy and Compliance: Help define and enforce security policies, standards, and best practices to meet regulatory and compliance requirements (e.g., SOC 2, ISO 27001).
- Access Management: Manage and audit Identity and Access Management (IAM) policies, roles, and user accounts to enforce the principle of least privilege, with specific focus on Database Access Control (DAC) using tools like ChakraMax.
- Threat Modeling: Participate in architectural reviews and threat modeling to ensure security is built into our cloud solutions from the initial design phase.
Qualifications- Required Skills & Experience:
- Korean language proficiency required
- 3+ years of experience in a dedicated cloud security role.
- Strong knowledge of AWS security services, including IAM, Security Hub, GuardDuty, AWS Config, AWS Firewall, AWS WAF, and AWS Inspector.
- Hands-on experience with CWPP and CSPM solutions.
- Hands-on experience with Database Access Control (DAC) tools such as ChakraMax.
- Experience with scripting and automation (e.g., Python, CloudFormation, Terraform).
- Solid understanding of networking concepts and security protocols.
- Familiarity with common web exploits and vulnerabilities (e.g., OWASP Top 10).
- Excellent problem-solving, communication, and collaboration skills.
- Preferred Skills & Experience:
- AWS Certified Security - Specialty or other relevant certifications (e.g., CISSP, CCSP).
- Experience with container security technologies (e.g., Docker, Kubernetes).
- Familiarity with CI/CD security practices and DevSecOps principles.
- Experience in a large-scale, enterprise-level cloud environment.
