Cloud Security Specialist

As a highly skilled Cloud Security Specialist at Redaptive, your role will involve shaping and leading the cloud security strategy while working with cutting-edge technologies in a dynamic, mission-driven organization. Your responsibilities will include: - AWS Security Architecture & Strategy - Design and implement comprehensive security architectures for Redaptive's AWS cloud environments - Develop cloud security roadmaps aligned with business objectives and compliance requirements - Establish security standards, policies, and procedures for AWS deployments - Evaluate and recommend security enhancements to strengthen the cloud security posture - Lead security aspects of cloud migration initiatives and new AWS service adoptions - Implement zero-trust security principles in cloud architecture designs - Provide expert guidance on AWS security best practices to stakeholders across the organization - Establish metrics to measure the effectiveness of cloud security control - Security Automation & CI/CD Integration - Develop and maintain security as code implementations for AWS environments - Integrate security controls and checks into CI/CD pipelines - Automate security scanning, compliance verification, and remediation processes - Implement infrastructure as code (IaC) security practices for AWS CloudFormation and Terraform - Create automated security testing frameworks for cloud resources - Develop custom security rules and policies for automated enforcement - Collaborate with DevOps teams to ensure security requirements are met throughout the development lifecycle - Design and implement automated incident response playbooks for cloud security event - Cloud Security Monitoring & Operations - Configure and manage cloud security monitoring solutions including AWS Security Hub, GuardDuty, and CloudTrail - Implement and tune cloud-native SIEM solutions for comprehensive security visibility - Develop and maintain cloud security dashboards and reporting mechanisms - Perform advanced cloud security investigations and threat hunting - Respond to and remediate cloud security incidents - Conduct cloud security posture assessments and vulnerability management - Implement and manage cloud security logging and audit mechanisms - Develop and maintain cloud security incident response procedure - Identity & Access Management - Design and implement AWS IAM policies, roles, and permission boundaries following least privilege principles - Develop automated solutions for identity lifecycle management in cloud environments - Implement and manage privileged access management for AWS resources - Configure and maintain AWS Single Sign-On and federation with corporate identity providers - Design and implement secure service-to-service authentication mechanisms - Conduct regular access reviews and implement automated compliance checks - Develop and maintain IAM security frameworks and governance processes - Implement automated detection and remediation of IAM policy violations Qualification Required: - Advanced expertise with AWS security services - Strong understanding of cloud security frameworks - Hands-on experience implementing security controls in CI/CD pipelines - Expert knowledge of infrastructure as code (IaC) security - Experience with cloud security posture management (CSPM) tools - Strong understanding of identity and access management principles - Experience with automated security testing and continuous security validation - Proficiency in scripting and programming for security automation - Excellent understanding of network security, containerization security, and serverless security - In-depth knowledge of DevSecOps principles and practices Redaptive is seeking a Cloud Security Specialist with a Bachelor's degree in Cybersecurity, Computer Science, or a related field; a Master's degree is preferred. You should have a minimum of 7+ years of experience in cybersecurity, with at least 5 years focused on cloud security. Relevant security certifications such as AWS Certified Security - Specialty, CCSP, CISSP, or equivalent are desired.,