eSec Forte Technologies - Cloud Security Engineer - DevSecOps (3-5 yrs)

We are seeking a highly skilled Cloud Security Engineer to strengthen the security of our cloud environments and ensure compliance with industry best practices.

The ideal candidate will have hands-on experience with cloud platforms (AWS, Azure, Google Cloud Platform) and proficiency in cloud security tools, automation, and techniques.

Key Responsibilities :

- Design, implement, and manage cloud security solutions across AWS, Azure, and Google Cloud Platform (GCP).

- Configure and maintain cloud-native security services such as AWS GuardDuty, AWS Security Hub, Azure Security Center, and Google Cloud Security Command Center.

- Monitor and secure cloud infrastructure using Prisma Cloud or similar Cloud Security Posture Management (CSPM) and Cloud Workload Protection (CWP) platforms.

- Develop and enforce secure IAM policies, roles, and permissions.

- Monitor access control mechanisms and perform periodic audits to ensure least-privilege principles.

- Implement and maintain secure network designs, including virtual private clouds (VPCs), firewalls, and micro-segmentation.

- Monitor network traffic for anomalies, mitigate threats, and enhance the network's resilience against attacks.

- Set up and manage security alerting systems for real-time threat detection.

- Respond to security incidents, conduct root cause analysis, and implement mitigation strategies.

- Secure containerized applications deployed in Docker and Kubernetes environments.

- Implement workload protection measures and enforce compliance in hybrid or multi-cloud architectures.

- Conduct regular compliance checks for standards such as ISO 27001, SOC 2, PCI DSS, and GDPR.

- Establish and document cloud security policies, guidelines, and best practices.

- Develop and maintain security automation scripts using Python, Bash, or similar languages to streamline routine security tasks.

- Integrate security tools with CI/CD pipelines to ensure a shift-left approach to security.

Required Skills :

- Hands-on experience with AWS, Azure, and GCP.

- Proficiency in Prisma Cloud, AWS GuardDuty, Azure Security Center, or similar platforms.

- Strong understanding of Docker, Kubernetes, and related security measures.

- IAM & Network Security: Expertise in IAM, encryption protocols, and network security configurations.

- Knowledge of scripting languages (e.g , Python, Bash) for security automation.

- Experience with Infrastructure as Code (IaC) tools like Terraform or CloudFormation is a plus.

- Strong analytical and problem-solving abilities.

- Excellent communication and documentation skills.

- Ability to work collaboratively in cross-functional teams.

- Certifications such as AWS Certified Security Specialty, Azure Security Engineer Associate, or GCP Professional Cloud Security Engineer.

- Familiarity with DevSecOps principles and CI/CD tools.

- Knowledge of security frameworks such as NIST CSF, CIS Benchmarks, and MITRE ATT&CK.

- Competitive salary and benefits.

- Opportunities for professional development and certifications.

- A collaborative and innovative work environment.

- The chance to work on cutting-edge cloud security projects