Job Title: Cloud Security Engineer
Job Summary: We are seeking a highly skilled Cloud Security Engineer to design, implement, and maintain security solutions across cloud environments. The ideal candidate will be responsible for securing cloud infrastructure, applications, and data while ensuring compliance with organizational and regulatory requirements. This role requires expertise in cloud security architecture, threat detection, vulnerability management, and security automation across AWS, Azure, and/or Google Cloud Platform (GCP).
Key Responsibilities: - Design and implement security controls for cloud-based infrastructure and applications.
- Monitor cloud environments for security threats, vulnerabilities, and compliance violations.
- Conduct security assessments, risk analyses, and vulnerability scans.
- Implement Identity and Access Management (IAM) policies and access controls.
- Develop and maintain cloud security standards, policies, and best practices.
- Collaborate with DevOps, Infrastructure, and Development teams to integrate security into CI/CD pipelines.
- Investigate and respond to security incidents, alerts, and breaches.
- Configure and manage cloud-native security services and third-party security tools.
- Ensure compliance with industry regulations and security frameworks.
- Automate security monitoring, auditing, and remediation processes.
- Perform cloud security architecture reviews and recommend improvements.
Required Skills: - Strong understanding of cloud computing and cloud security principles.
- Knowledge of network security, encryption, authentication, and access management.
- Experience with vulnerability management and threat detection.
- Familiarity with security frameworks and compliance standards.
- Strong analytical, troubleshooting, and incident response skills.
- Excellent communication and documentation abilities.
Technical Skills: - Cloud Platforms: AWS, Microsoft Azure, Google Cloud Platform (GCP)
- Security Services: AWS Security Hub, GuardDuty, Azure Defender, Google Security Command Center
- Identity & Access Management (IAM)
- Security Monitoring: Splunk, QRadar, Sentinel, ELK Stack
- Vulnerability Tools: Nessus, Qualys, Rapid7
- Infrastructure as Code: Terraform, CloudFormation
- Container Security: Docker, Kubernetes, Aqua Security, Prisma Cloud
- Scripting: Python, PowerShell, Bash
- Networking: VPN, Firewalls, DNS, Load Balancers
- CI/CD Security: Jenkins, GitHub Actions, Azure DevOps
Qualifications: - Bachelor's degree in Computer Science, Information Security, Cybersecurity, Information Technology, or a related field.
- Relevant certifications are highly preferred:
- AWS Certified Security - Specialty
- Microsoft Certified: Azure Security Engineer Associate
- Google Professional Cloud Security Engineer
- CISSP
- CCSP
- CompTIA Security+
Experience: - 4-8 years of experience in Cloud Security, Cybersecurity, or Infrastructure Security.
- Hands-on experience securing cloud environments in AWS, Azure, or GCP.
- Experience implementing security controls for cloud-native and containerized applications.
- Experience working in Agile and DevOps environments.
Preferred Qualifications: - Experience with Zero Trust Security Architecture.
- Knowledge of DevSecOps practices and security automation.
- Experience securing Kubernetes and microservices environments.
- Understanding of data privacy regulations such as GDPR, HIPAA, SOC 2, and ISO 27001.
- Experience with Security Information and Event Management (SIEM) solutions.
Preferred Qualities: - Strong attention to detail and risk management mindset.
- Ability to respond effectively during security incidents.
- Excellent problem-solving and critical-thinking skills.
- Strong collaboration and stakeholder management abilities.
- Passion for emerging cloud and cybersecurity technologies.
Employment Type: Full-Time
Location: Remote / Hybrid / On-site
Nice to Have: - Experience with Multi-Cloud and Hybrid Cloud Security.
- Knowledge of AI-driven threat detection and security analytics.
- Experience implementing Security as Code practices.
- Familiarity with penetration testing and ethical hacking methodologies.
- Experience mentoring security engineers and contributing to enterprise security strategy.
