Cloud Network Security Administrator

Job Description

Job Summary : The Cloud Network Security Administrator shall have strong technical knowledge of perimeter, networking and security practices of key public cloud offerings such as Microsoft Azure and Amazon Web Services to build and administer cloud infrastructure platform. The Cloud Network Security Admin is expected to individually solve problems of higher complexity. The Cloud Network Security Admin shall also participate in the development and enhancement of the information security solutions and to ensure it maintains relevancy with prevalent threats and industry changes. Work Location: Mumbai. Roles and Responsibilities : Must understand various types of attacks like Cross site scripting, SQL Injection, Cookie Poisoning, DDoS attacks, Web scraping, brute force, etc. Must define, administer and manage policies accordingly. Creates WAF rules/signatures to mitigate threats and implements best practices Creation and implementation of custom alerting dashboards in SIEM for investigations Works extensively with different stakeholders for tuning WAF policies or creating custom signatures Design and Develop Cloud-specific security policies, standards and procedures e.g. Identity and Access Management (SSO, SAML), and Privilege Access Management (PAM), Firewall management, SSL/IPSec, Encryption Key Management (BYOK), Security incident and event management (SIEM), Data protection (DLP, encryption), Vulnerability Management in partnership with Infrastructure Services, and Application Development. Orchestrate & Automate security control (guardrails) in Azure and AWS compute &/or Container services. Follows automate-first automate-everything philosophy with use of technologies like Terraform. Focus on Platform Governance & Security and automating operational tasks wherever possible. Requirements : Bachelor's Degree in Computer Science, Software Development or related field. Working knowledge of AWS WAF administration and management, associated policy management, Ingress Egress rules, VPC setup and administration. Must understand and have working knowledge of AWS Landing Zone and Control Tower. Experience with Container technologies (Docker, Kubernetes) Experience with Vulnerability Management and Privilege Account management Strong understanding of TCP/IP, web protocols and networking concepts Excellent understanding of OWASP Risks, Vulnerabilities and Mitigation Mechanisms Experience with Web Application Firewall management and rules Well versed in system exploits (e.g. Buffer Overflows, PTH attacks, windows authentication framework etc.) Excellent understanding of DDoS techniques and mitigation mechanisms Ability to manage and prioritize tasks efficiently Solid resource planning and problem-solving skills Readiness to demonstrate a proactive attitude Excellent verbal and written communication skills Technologies : AWS WAF, VPC, related.