Cloud Security Engineer

Job Description: Our client is looking for a skilled and experienced Cloud Security Engineer to join their team. As a Cloud Security Engineer, you will be responsible for designing, implementing, and maintaining the security infrastructure and practices for our cloud-based systems. You will work closely with cross-functional teams to ensure the confidentiality, integrity, and availability of our cloud environments. Your expertise in cloud security best practices, risk assessment, and incident response will be crucial in safeguarding our cloud infrastructure and protecting our sensitive data.

Responsibilities:

• Develop and implement cloud security strategies, standards, and best practices for our cloud-based systems.
• Design, deploy, and maintain security controls and technologies to protect our cloud infrastructure, networks, and data.
• Conduct regular security assessments, vulnerability scanning, and penetration testing of our cloud environments.
• Monitor and respond to security incidents, conduct investigations, and implement remediation actions to mitigate risks.
• Implement and enforce cloud security policies, access controls, and identity and access management (IAM) principles.
• Collaborate with cross-functional teams to ensure compliance with relevant security standards, regulations, and industry best practices.
• Evaluate and recommend security technologies and tools to enhance the security posture of our cloud environments.
• Develop and maintain security documentation, including policies, procedures, standards, and guidelines.
• Stay up to date with the latest cloud security threats, vulnerabilities, and industry trends, and provide recommendations for risk mitigation.
• Provide technical guidance and mentorship to other team members on cloud security practices.

Requirements:

• Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field.
• Proven experience as a Cloud Security Engineer or a similar role, with a strong background in securing cloud-based systems.
• In-depth knowledge of cloud platforms such as AWS, Azure, or GCP, including their security features and services.
• Experience with cloud security controls and technologies, such as firewalls, intrusion detection/prevention systems (IDS/IPS), encryption, and web application firewalls (WAF).
• Familiarity with cloud-native security tools and services, including cloud security posture management (CSPM), cloud workload protection platforms (CWPP), and cloud access security brokers (CASB).
• Strong understanding of networking protocols, security protocols, and network security architecture.
• Knowledge of identity and access management (IAM) principles, including role-based access control (RBAC) and multi-factor authentication (MFA).
• Experience with security assessment tools, vulnerability scanning tools, and penetration testing methodologies.
• Familiarity with security compliance frameworks and regulations such as ISO 27001, NIST, GDPR, or HIPAA.
• Strong problem-solving and analytical skills, with the ability to analyze security incidents and implement appropriate mitigation measures.
• Excellent communication and collaboration skills, with the ability to work effectively in cross-functional teams.
• Relevant certifications such as Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH) are highly desirable.

Preferred Qualifications:

• Experience with containerization technologies such as Docker and Kubernetes, and their associated security best practices.
• Knowledge of serverless computing architectures and their security considerations.
• Familiarity with DevSecOps principles and integrating security into the CI/CD pipeline.
• Understanding of cloud-based threat intelligence, security monitoring, and incident response processes.
• Experience with security automation and scripting using tools such as Python, PowerShell, or Bash.