Introduction
Seeking skilled and proactive Cloud Security senior Engineer to oversee and enhance our cloud security posture
across AWS and Azure environments
. The ideal candidate will be responsible for monitoring, reporting, reviewing architecture and ensuring compliance with cloud security policies and guidelines. This role involves working with
CSPM tools
,
Manage 0365 security
, WAF
implementation
with ruleset, identifying security gaps, and implementing best practices to maintain a secure and resilient cloud infrastructure.
Key Responsibilities
Your role and responsibilities
- Cloud Security Compliance & Reporting:
Ø Prepare and deliver monthly reports on cloud security compliance posture.
Ø Conduct Monthly, Quarterly & half-yearly reviews of cloud security infrastructure and architecture (both AWS & Azure).Ø Report and track cloud security compliance metrics and improvement actions.Ø Develop and enforce cloud security policies, standards, and best practicesØ Conduct threat modelling, risk assessments, and vulnerability management.
Ø Administer and manage Cloud Security Posture Management (CSPM mandatory) tools.
Ø Developing custom RQL policies and configuring dashboards for executive and operational reporting. Implemented RBAC with tailored permission sets.Ø created SOPs for alert response, and ensured timely closure of misconfigurations through continuous monitoring and escalation aligned with defined SLAsØ Remediate misconfigurations detected by CSPM tools (e.g., open ports, public buckets).Ø Monitor and respond to alerts from Security Hub (AWS) or Security Centre (Azure).Ø Govern cloud assets using CSPM tools and enforce best practices.Ø Provide monthly compliance and security score reports.Ø Take immediate action on high-critical accounts and derive improvement plans.Ø Create custom dashboards OR rules in CSPM tools as per requirement.
- Security Monitoring & Incident Response:
Ø Continuously monitor cloud environments for security alerts and take necessary remediation actions.
Ø Ensure adherence to MSIL cloud security policy and cloud security checklists.Ø Respond to security incidents and assist in root cause analysis.
- Manage Office 365 Security
Ø Perform operations support and troubleshooting for access controls
Ø Perform operations support and troubleshooting for Multi Factor AuthenticationØ Perform operations support and troubleshooting for Microsoft Office 365 Data ProtectionØ Perform operations support and troubleshooting for Encryption and Key managementØ Perform operations support and troubleshooting for ATA
- Security Architecture & Recommendations:
Ø Identify and recommend security improvements aligned with cloud security guidelines and best practices.
Ø Suggest and implement architectural enhancements for security, high availability, data protection, and data leak prevention.Ø Design and implement secure cloud architectures for Azure and AWS environments.Ø Implement and manage security controls such as IAM, encryption, WAF etc.
- Policy & Baseline Enforcement:
Ø Ensure cloud environments meet minimum security baselines.Ø Drive implementation of security controls and compliance with internal and external standards.
Preferred Education
Bachelor's Degree
Qualifications
Required technical and professional expertise
Ø Should be BE/B.Tech /MCA/BCA with minimum 6-9 years of expiration in cloud security or cloud infrastructure roles.Ø Must have hands-on experience with AWS Security Hub, Azure Security Center, Microsoft Defender for Cloud, AWS Security Hub, IAM, KMS, WAF, etc.Ø Proficiency in CSPM tools such as Prisma Cloud, or Microsoft Defender for Cloud.Ø Strong understanding of cloud security frameworks and best practices (e.g., CIS Benchmarks, NIST, ISO 27001).Ø Experience with security incident response and remediation in cloud environments.
Preferred Skills
Preferred technical and professional experience
Ø Cloud certifications (e.g.,AZ-500 , AWS Certified Security –are highly desirable).Ø Experience with multi-cloud security strategies.Ø Familiarity with container security (Kubernetes, Docker).Ø Experience in incident response and digital forensics.Ø Excellent communication and documentation abilities.
