Job
Description
Total Yrs. of Experience 7+ years Relevant Yrs. of experience 5+ years Detailed JD (Roles and Responsibilities) Lead the design and implementation of secure cloud landing zones for AWS, Azure, and GCP, incorporating robust security controls for core services and features. Design and implement hybrid and multi-cloud security solutions that seamlessly integrate public cloud services with traditional hosting and delivery models. Conduct in-depth evaluations of cloud security posture, identify Gaps and establish an actionable roadmap to remediate potential risks. Design and implement cloud security controls across all the security domains (Cloud Workload, Network, Identity, Vulnerability, Governance, Monitoring and Data etc.) within Azure, AWS and GCP. Create Automation scripts using Infrastructure as Code (IaC) tools like Terraform, Ansible, Chef, or Puppet to ensure secure and automated deployments. Oversee the development of automation scripts to streamline security operations, improve system reliability, and enhance monitoring capabilities. Leverage industry best practices (NIST, CIS) to design and implement effective security and compliance frameworks. Keep updated with emerging cloud security trends such as Solutions, Controls, Threats, Vulnerabilities and Compliance standards. Build strong client relationships, understand their business needs, and communicate complex technical concepts effectively. Requirements: Minimum 8+ years of experience in cybersecurity, with at least 4 years in cloud security roles (AWS / Azure / GCP). Design and implement robust, scalable cloud security architecture based on Secure Landing Zone tailored to meet client needs and align with industry standards and compliance frameworks. Deep understanding and hands on experience of cloud security controls and the ability to leverage advanced security tools like CNAPP, CIEM, and CWPP etc. ( PaloAlto Prisma, WIZ, Aqua, Orca, Crowdstrike and etc.) Experience on Azure, AWS and GCP platform, with security controls like CSPM (Microsoft Defender for Cloud / Security Hub), CNAPP, EDR (Microsoft Defender CWPP), Key Vault, DDoS (Azure DDoS/ AWS Shield), Security Groups, VNP, Firewall, SASE, Secure Web Gateway (FrontDoor / AWS WAF) and Serverless Security, etc. Desing and implement cloud security controls across all the security domains (Network, Identity and Access, Vulnerability, Environment Governance, Monitoring and Data Privacy) within Azure and AWS Proficient in frameworks like CSA Cloud Controls Matrix, NIST Cybersecurity Framework, or similar. Hands-on experience in two or more core cloud security domains (e.g., IAM, Network Security, Governance etc.). Knowledge on Compliance Standards like HIPAA, PCI DSS, GDPR, and other relevant regulations. Extensive hands-on experience with tools like Experience in Automation, scripting Cloud Formation/ Terraform, and DevSecOps to secure cloud infrastructure deployment Create and maintain automation scripts to streamline cloud security processes, enhance system reliability, and reduce manual interventions Mandatory skills Cloud security Desired/ Secondary skills Domain Cyber Sec
