Senior Cloud Security Engineer

Role & responsibilities

As a Senior Cloud Security Engineer, you will play a critical role in ensuring the security and compliance of our cloud infrastructure. Youll collaborate with cross-functional teams to design, implement, and maintain robust security measures across our cloud platforms. Your expertise will be instrumental in safeguarding our systems, data, and applications.

You will assist in the wider operational activities including but not limited to validating and addressing identified security risks, Data Security, SOC1/SOC2 Audits, Client Audits, security certifications, vulnerability testing and support management teams during security incident events. You should be confident and capable of explaining the risk and remediation positions for threats as part of the global security incident management process related to cloud security.

Duties & Responsibilities

Host Configuration Management:

• Conduct regular scans of host configurations to identify configuration violations and ensure compliance with security policies and CIS Benchmarks.
• Develop and implement remediation plans for identified violations.
• Experience with tools like AWS Systems Manager, Ansible, Puppet, or Chef for managing and automating host configurations.
• Strong skills in scripting languages, particularly Bash for Linux environments and PowerShell for Windows environments.
• Collaborate with IT and DevOps teams to ensure secure configurations are maintained.

Cloud Workload Protection:

• Perform vulnerability assessment on container images and containerized environments using industry standard tools.
• Identify, assess, assign, and report vulnerabilities throughout the container lifecycle.
• Work with development teams to ensure vulnerabilities are addressed in a timely manner.
• Implement security controls and best practices for container orchestration platforms.
• Combine security assessment tools with automation to proactively identify and remediate vulnerabilities.
• Collaborate with functional-area architects and security specialists to ensure adequate controls are in place.

Cloud Security Posture Management (CSPM):

• Collaborate with the Information Security and compliance team to develop global cloud security architecture and maturity standards.
• Evaluate and respond to alerts and events from security tools, fine-tuning configurations to minimize false positives.
• Develop event response documentation and processes for the Security Operations Center.
• Work closely with Cloud Operations teams to define and implement security standards and best practices.
• Maintain documentation and diagrams for security tools, system environments, and cloud operations.

Incident Response Monitoring:

• Monitor and analyze security logs and events.
• Respond promptly to security incidents, investigating and containing threats.
• Work within a DevOps security model to automate incident response.
• Serve as a subject matter expert (SME) for security tools and processes.

Position Requirements:

• Bachelor’s or master’s degree in computer science, Engineering, Information Security, or similar boot camp certifications.
• Relevant certifications (e.g., AWS, CISSP, CCSP, CISM, GSEC) are highly desirable.
• Proven experience in cloud security, vulnerability management, and/or incident response.
• Strong knowledge of cloud platforms (e.g., AWS, Azure, Google Cloud-optional).
• Familiarity with security assessment tools (e.g. Host Configuration Management, Cloud Security Posture Management (CSPM), cloud native tools, Vulnerability scanners, etc).
• Strong skills in scripting languages, particularly Bash for Linux environments and PowerShell for Windows environments.
• Experience with developing and managing cloud Infrastructure as Code (IAC).
• Ability to collaborate effectively with cross-functional global teams.