Cloud Security Lead

Position Overview:

The Lead - Cloud Security will be responsible for designing, implementing, and

managing the cloud security strategy and architecture for Axis Securities. This role

will play a critical part in ensuring the security and integrity of our cloud-based

infrastructure and applications. The ideal candidate will possess a deep understanding

of cloud security best practices, along with hands-on experience in implementing

security solutions in cloud environments.

Role & responsibilities:

1. Develop and implement cloud security policies, standards, and procedures in

alignment with industry best practices and regulatory requirements.

2. Design and architect secure cloud environments, including but not limited to AWS,

Azure, and Google Cloud Platform (GCP).

3. Conduct regular security assessments and audits of cloud infrastructure and

applications to identify and remediate vulnerabilities.

4. Strong understanding of relevant security frameworks and standards, such as NIST

Cybersecurity Framework, ISO 27001:2017, and CSA Cloud Controls Matrix.

5. Implement and manage cloud security tools and technologies, such as identity and

access management (IAM), encryption, intrusion detection/prevention systems

(IDS/IPS), and security information and event management (SIEM) solutions, CASB,

NSG etc.

6. Evaluate and implement CNAPP, lift & shift, Zero trust, Cloud Workload Protection

etc.

7. Lead incident response efforts for cloud security incidents, including investigation,

containment, and recovery.

8. Collaborate with cross-functional teams, including IT, engineering, and compliance,

to integrate security into the software development lifecycle (SDLC) and DevSecOps

processes.

9. Stay updating with emerging threats and security trends in cloud computing, and

make recommendations for enhancing the cloud security posture of the Company.

10. Security automation on cloud & should have keen knowledge and experience on

cloud network and infra technologies such cloud firewall, accounts etc.

11. Lead and mentor to IS team members, providing guidance, training, and support to

enhance their skills and capabilities.

12. Periodically demonstrate progress status to CISO and Senior Management.

13. Liaison with parent company to publish Cloud security dashboard and related stuff.

14. Responsible to Manage, Oversight and Coordination on cloud security domain related

projects.

Education and Certifications:

• Bachelors degree in Computer Science, Information Security, or a related field;

Masters degree preferred.

• At least 4- 5 years of core experience in cloud security roles and expected overall

atleast 6 years within the IS domain and team management, with a proven track

record of designing and implementing secure cloud architectures.

• In-depth knowledge of cloud platforms such as AWS, Azure, and GCP, including

their native security features and services.

• Certifications such as Certified Cloud Security Professional (CCSP), AWS Certified

Security - Specialty, or equivalent, are highly desirable.

• Excellent communication skills, with the ability to effectively convey complex

security concepts to technical and non-technical stakeholders.

• Strong analytical and problem-solving skills, with a keen attention to detail.

• Ability to work independently and collaboratively in a fast-paced environment.