Roles and Responsibilities: Design, implement, and maintain secure, scalable, and highly available cloud infrastructure. Lead security-focused SRE initiatives, including secure CI/CD pipelines, automated vulnerability management, and threat modeling. Develop security automation tools to detect and mitigate security risks proactively. Collaborate with security teams to integrate Zero Trust Architecture, IAM best practices, and least privilege principles across infrastructure. Monitor and improve system reliability, performance, and security posture using SIEM, IDS/IPS, and security analytics tools. Enhance incident response and forensics capabilities, ensuring rapid detection, response, and recovery from security threats. Implement secure logging, monitoring, and anomaly detection for cloud-native environments (AWS, GCP, Azure, Kubernetes). Automate security policy enforcement and compliance monitoring (e.g., SOC 2, ISO 27001, NIST, HIPAA, GDPR). Drive chaos engineering and resilience testing to validate system security and failure recovery mechanisms. Mentor and guide SRE and security engineers in best practices for secure infrastructure and operational excellence. Skills Required: Expertise in designing and maintaining secure, scalable, and highly available cloud infrastructure Experience in security-focused SRE initiatives including CI/CD, vulnerability management, and threat modeling Proficiency in developing security automation tools Knowledge of Zero Trust Architecture, IAM best practices, and least privilege principles Familiarity with SIEM, IDS/IPS, and security analytics tools Strong skills in incident response, threat detection, and forensics Experience with secure logging, monitoring, and anomaly detection in cloud-native environments (AWS, GCP, Azure, Kubernetes) Understanding of compliance frameworks such as SOC 2, ISO 27001, NIST, HIPAA, GDPR Experience with chaos engineering and resilience testing Ability to mentor and guide teams in secure infrastructure and operational excellence
