Duties and Responsibilities:
- Design and deploy cloud-native security architectures in AWS, Azure, or GCP.
- Implement identity and access management (IAM), encryption, key management, and network security controls.
- Monitor cloud infrastructure for vulnerabilities, misconfigurations, and threats using SIEM and CSPM tools.
- Collaborate with engineering and DevOps to embed security into cloud deployments (shift-left security).
- Automate security assessments and remediation workflows using Infrastructure-as-Code (IaC).
- Conduct threat modeling and cloud risk assessments.
- Ensure compliance with industry regulations like SOC 2, HIPAA, GDPR, or ISO 27001.
Requirements and Qualifications:
- Bachelor’s degree in Information Security, Computer Science, or a related field.
- Experience with major cloud platforms (AWS, Azure, GCP) and security services.
- Familiarity with IaC tools like Terraform, CloudFormation, or Pulumi.
- Knowledge of container security (e.g., Kubernetes, Docker).
- Hands-on experience with tools like AWS Security Hub, Azure Defender, Prisma Cloud, or Wiz.
- Relevant certifications such as AWS Security Specialty, Azure Security Engineer, or CCSP are a plus.