Cloud Security Specialist - AWS (3-5 yrs)

Experience : 3 to 5 years.

Location : Chennai, Hyd (Client ODC).

Job type : Contract to hire for known MNC.

Job Description :

Key Responsibilities :

- Design and implement AWS landing zones using AWS Control Tower and associated frameworks.

- Architect solutions using Kubernetes, Docker, and AWS services with a focus on security and scalability.

- Develop secure NAT gateway architectures for public workload access.

- Conduct comprehensive cloud security posture assessments and provide actionable recommendations.

- Implement and manage tools like AWS Security Hub, AWS Config, GuardDuty, and Microsoft Defender to monitor and secure the cloud environment.

- Integrate DevSecOps practices into CI/CD pipelines, ensuring secure code deployment.

- Automate security alert remediation using Python, Terraform, CloudFormation, and Ansible.

- Ensure compliance with security best practices across all automation scripts and deployments.

- Develop and maintain cloud security governance policies, aligning with frameworks like the Security Maturity Model. Evaluate and mitigate risks associated with transitioning workloads to the cloud.

- Enforce security through Service Control Policies (SCP) and custom configurations. Implement and monitor Data Security Posture Management (DSPM) strategies to protect sensitive data.

- Establish compliance with industry standards (e.g., GDPR, HIPAA, PCI DSS) and AWS-specific best practices.

- Oversee the security of global services and ensure proper configurations for public-facing workloads.

- Implement and audit IAM, VPC, and network-level security policies to minimize exposure risks.

Key Skills & Qualifications :

- AWS Expertise : In-depth knowledge of AWS services including Security Hub, Config, GuardDuty, Control Tower, and IAM.

- Containerization & Orchestration : Strong experience with Kubernetes and Docker in cloud environments.

- DevSecOps : Proficient in integrating security into CI/CD pipelines using Python, Terraform, CloudFormation, and Ansible.

- Data Security : Understanding of DSPM and strategies to secure sensitive workloads.

- Automation : Strong scripting and automation capabilities to remediate security alerts and enforce policies.

- Analytical mindset to assess risks and develop strategic security solutions.

- Ability to work collaboratively with cross-functional teams.

- Strong communication skills for stakeholder engagement and reporting. AWS Certified Security