Job
Description
Job responsibilities Assist in the design, deployment, and management of cloud environments (AWS, OpenStack, Azure, GCP) to ensure scalability, security, and high availability. Implement and maintain cloud security best practices, including Identity and Access Management (IAM), data encryption, and access controls to safeguard cloud environments. Support SOC activities by integrating cloud infrastructure with security monitoring tools such as CrowdStrike EDR, Proofpoint, and email security solutions to detect and respond to security incidents. Respond to and investigate security incidents in cloud and on-premises environments, using CrowdStrike EDR for endpoint threat detection and Proofpoint for email-related threats. Develop and implement automation scripts using tools like Terraform, CloudFormation, or Ansible to streamline cloud provisioning, security management, and incident response processes. Leverage SOC tools (CrowdStrike, Proofpoint) to continuously monitor cloud environments for potential threats, anomalies, and vulnerabilities. Configure and manage security alerts and events generated by CrowdStrike EDR and Proofpoint, ensuring rapid identification and mitigation of threats across cloud services and email systems. Work closely with development and operations teams to ensure seamless integration of cloud environments and security solutions into applications and services. Assist in migrating on-premises applications and services to the cloud, ensuring secure migration and minimal operational disruption. Assist in educating teams about cloud security best practices, security operations processes, and how to leverage security tools such as CrowdStrike and Proofpoint to safeguard against threats. Stay informed on emerging threats, new security tools, and best practices for securing cloud environments and managing SOC operations. Skills Experience with one or more cloud platforms (AWS, Azure, GCP) and their core services such as compute, storage, networking, and security. Familiarity with SOC tools, particularly CrowdStrike EDR (for endpoint detection and response), Proofpoint (for email security and threat protection), and other security monitoring and incident response platforms. Strong understanding of cloud security best practices, including IAM (Identity and Access Management), secure APIs, encryption, and protecting data in transit and at rest. Proficiency in using cloud automation and Infrastructure-as-Code (IaC) tools like Terraform, CloudFormation, or Ansible to manage and provision cloud resources and integrate security operations. Knowledge of cloud networking concepts, including VPCs, subnets, security groups, and firewalls, with a focus on securing the cloud network. Experience with email security solutions like Proofpoint, including configuring, managing, and monitoring for phishing attempts, spam, and malware. Hands-on experience with security incident response processes, including investigation, mitigation, and reporting, using CrowdStrike EDR and other SOC tools. Familiar with performing vulnerability scans and collaborating with relevant teams on vulnerability remediation efforts. Qualifications 2+ years of experience leading security initiatives for enterprises in an information security (InfoSec) consultant. CEH (Certified Ethical Hacker), or other relevant security certifications.
