Cloud Security Engineer

Role & responsibilities

• Perform comprehensive security reviews of infrastructure, applications, and cloud deployments.
• Analyze and assess security configurations across Cloud environments (Azure, AWS and GCP)
• Monitor and evaluate security alerts and incidents, collaborating with SOC teams for resolution.
• Conduct targeted security assessments of cloud-hosted assets to identify misconfigurations, enforce compliance, and improve operational security posture.
• Provide recommendations to improve security posture and reduce risk exposure
• Utilize Cloud Security tools to assess and remediate vulnerabilities.
• Cyber security reviews of cloud-hosted assets, including infrastructure resources, applications and associated configurations.
• Develop and maintain security documentation, including review reports and risk assessments.
• Collaborate with cross-functional teams to embed security best practices.
• Stay updated on emerging threats, vulnerabilities, and compliance requirements.
• Automate routine security tasks using scripting or orchestration tools (e.g., Python, PowerShell, Terraform).
• Administer and manage Cloud Security Posture Management (CSPM) tools including Microsoft Defender for Cloud (MDC), Prisma Cloud, Wiz, etc.

Primary skills: MDC (Microsoft Defender for Cloud and Prisma Cloud. Experience on Wiz is a plus.

• Integrate security controls into CI/CD pipelines (DevSecOps)
• Knowledge around IAM concepts and reviews of least privilege access across cloud and enterprise systems.
• Perform/Familiarity around container security assessments (Kubernetes, Docker, Sandbox) and ensure secure configurations.
• Apply cloud security frameworks and best practices (e.g., CSA CCM, Azure Security Benchmark)
• Leverage AI/ML-based threat detection tools to enhance security operations and reduce false positives.

Preferred candidate profile

• 58 years of experience in Cybersecurity, with a focus on security reviews and operations.
• Hands-on experience with Cloud Security Posture Management (CSPM) tools such as Microsoft Defender for Cloud, Prisma Cloud, Wiz, etc.
• Hands-on experience in cloud security operations, cloud asset reviews, including infrastructure, applications, resources and associated configurations.
• Proficiency in cloud-native security solutions across Microsoft Azure, AWS, or GCP.
• Familiarity with vulnerability scanners (Qualys, Tenable), SIEM platforms (Splunk, Sentinel), and ticketing systems (ServiceNow), SecOps.
• Strong understanding of networking protocols, Firewalls, IDS/IPS, NSG, NACL , DDOS, VPN and WAF technologies.
• Deep understanding of Cyber Security Standards and Frameworks such as NIST 800-61R2, OWASP, CIS.
• Experience with incident response workflows.
• Excellent analytical, communication, and documentation skills
• Mandatory certifications: SC-100/ SC-200/ AZ-500/ ISC2 CC/ CompTIA Security+ or equivalent.
• Additional certifications like CEH, CCSP, CISA, CRISC, CISM are a plus.