Cloud Security Lead

The Cloud Security Lead will be responsible for managing the security aspects of our cloud infrastructure and services, ensuring the protection of our data, applications, and systems. This role will be critical in building, enforcing, and maintaining a comprehensive cloud security strategy. The ideal candidate should have extensive experience with cloud security, a deep understanding of security protocols, and the ability to collaborate with other teams to safeguard our organization's cloud ecosystem.

ACCOUNTABILITIES:

Cloud Security Strategy & Implementation:

Develop and implement cloud security policies, procedures, and controls across all cloud environments (e.g., AWS, Azure, Google Cloud). Ensure compliance with industry standards and regulations

Risk Management & Assessment:

Conduct regular cloud security assessments, including vulnerability scanning, penetration testing activities, risk assessments, and penetration testing. Identify and mitigate security risks related to cloud deployments and services

Identity & Access Management (IAM):

Oversee IAM strategies, roles, and permissions management within the cloud. Ensure the least privileged access and the adoption of robust authentication mechanisms.

Cloud Security Architecture:

Design, implement, and maintain secure cloud infrastructure and architecture. Collaborate with architects and engineers to build secure cloud environments for development, testing, and production.

Incident Response & Forensics:

Lead cloud security incident response efforts, including detection, analysis, containment, and remediation. Conduct forensics investigations on any cloud-related security incidents or breaches.

Compliance & Regulatory Requirements:

Ensure cloud infrastructure meets regulatory requirements such as GDPR, CCPA, SOC 2, ISO 27001, etc. Support audits and provide documentation as needed.

Collaboration & Training:

Work closely with IT, DevOps, and development teams to integrate security practices into the CI/CD pipeline and cloud-native development. Provide guidance and training to teams on cloud security best practices.

Cloud Security Tooling & Automation:

Implement and manage cloud security tools and technologies (e.g., CSPM, SIEM, DLP). Automate security operations to improve efficiency and reduce manual interventions.

Build and manage client relationships on various cybersecurity initiatives:

Good communication, analytical and reasoning skills. Candidate shall be able to understand the client’s requirements, provide consulting and advisory assistance as part of technical engagements. Candidate shall be able to recommend the best practices for cloud security and assist client’s in developing and implementing their cloud security journey along with GRAMAX.

SKILLS & QUALIFICATIONS

EDUCATION & EXPERIENCE

• Bachelor’s or master’s degree in computer science, Information Security, or related field
• Minimum 

  6 years of experience

  in cloud security or cybersecurity roles
• Strong hands-on experience with cloud platforms such as 

  AWS, Microsoft Azure, or Google Cloud

TECHNICAL SKILLS

• Expertise in cloud security principles, architecture, and protocols.

• Designing cloud security roadmap and framework

  for organizations who wish to adopt cloud transformation journey.
• Conducting 

  risk assessment and gap assessment of existing cloud service infrastructure

  of organizations and suggesting improvements and remedial plans.
• Familiarity with 

  cloud-native services and container security

  (e.g., Kubernetes, Docker).
• Experience with security frameworks (e.g., NIST, CIS) and regulatory standards (e.g., NCIIPC, Cert-In).
• Proficiency in security tools (e.g., Prisma Cloud, Dome9, CloudHealth, CloudGuard).
• Handful experience in vulnerable scanning and penetration testing with knowledge on scanning tools like Nessus, BurpSuite, NMap
• Strong understanding of identity and access management (IAM), encryption, and data protection in cloud environments.
• Familiarity with 

  DevSecOps processes

  and CI/CD pipelines
• Hand-on experience in implementing cloud security capabilities including 

  CSPM, CIEM, CNAPP, CWP

  etc.

CERTIFICATIONS

• AWS Certified Security Specialty, Microsoft Certified: Azure Security Engineer, Google Cloud Professional Cloud Security Engineer, or equivalent certifications are highly desirable.
• CISSP, CCSP or other relevant security certifications would be preferred

SOFT SKILLS

• Excellent problem-solving, analytical, and communication skills.
• Ability to work in a collaborative and cross-functional team environment.
• Strong leadership skills with the ability to mentor and guide junior team members