Cloud Security Specialist

At IDEMIA we are passionate about shaping the future of secure identity and authentication solutions. Our innovative technologies play a crucial role in enhancing security, privacy, and convenience for individuals and organizations worldwide.

You may not know our name, but you have surely used our innovations and solutions. Our mission is to unlock the world and make it safer through cutting-edge identity technologies. Every day, around the globe, we are enabling citizens and consumers alike to perform their daily critical activities (such as pay, connect and travel), in the physical as well as digital space. We are transforming their lives by making the world more secure and yet also more streamlined.

We have brought together complementary know-how and technologies that have never been combined before for both the physical and digital era: secured connectivity, secured payments and secured identity management. Cybersecurity, biometrics, large scale distributed systems and Cloud computing, analytics and smart devices are at the core of both our physical products and our software and systems.

We serve our clients in 180 countries thanks to our 15,000 employees worldwide.

work Location: Noida Sector 73

Nearest Metro stn: Sector 52 Noida

About IDEMIA Public Security

We are dedicated to serving government and public security entities and, in so doing, IDEMIA is committed to the responsible use of technology for public safety. We develop cutting-edge biometrics technologies and identity verification systems that prioritize privacy, human rights and ensure fair and unbiased application. We are also committed to building an inclusive and diverse culture and our impact on sustainability. For example, in 2023, the Life Cycle Assessment for Vision Pass SP revealed a 38% energy reduction, attributed to its sustainable smart power-saving mode

Purpose

We are seeking a highly skilled and experienced Cloud Security Officer to join our team. The ideal candidate will be responsible for reviewing, implementing, and enforcing the security posture of our cloud environments on AWS and Azure. This role requires a deep understanding of cloud security principles, hands-on technical expertise to design and test solutions, and the ability to collaborate effectively across teams. Additionally, the Cloud Security Specialist will work closely with the Chief Information Security Officer (CISO) to align cloud security strategies with the organizations overall security vision and goals. 

The candidate will integrate the CPE (Cloud Platform Engineering) team which mission is to drive the governance of usage of cloud services and to build services to help product and program delivering to the cloud their services  

Required Skills and Qualifications:

• Proven experience in cloud architecture design and operations, with a focus on AWS and Azure.
• Proven experience in cloud security
• Strong understanding of cloud architecture, security controls, and best practices.
• Hands-on experience with tools such as AWS IAM, AWS Security Hub, AWS Firewall manager, Azure Defender, Azure Entra ID, Azure Firewall, etc.
• Proficiency in scripting or programming languages (e.g., Python, PowerShell, Bash).
• Experience with automation tools and frameworks (e.g., Terraform, Ansible).
• Experience with third-party CNAPP
• Familiarity with cloud compliance frameworks and risk management principles.
• Strong problem-solving and analytical skills, with the ability to test and validate solutions through proof of concept.
• Relevant certifications, such as AWS Certified Security Specialty, Microsoft Certified: Azure Security Engineer Associate, CISSP, or CCSP, are preferred.

Key Missions

1. Cloud Security Management:
 - Assess and enforce security policies, standards, and controls in AWS and Azure environments. 
 - Continuously monitor and improve the organizations cloud security posture through audits, assessments, and threat analysis.  
 - Implement and manage cloud-native security tools, such as AWS Security Hub, Azure Security Center, and also third party solution such as Crowdstrike  

2. Solution Design and Implementation:  
 - Design secure cloud solutions, addressing key areas like identity and access management
(IAM), encryption, network security, and compliance.  
 - Create detailed architecture diagrams and documentation for proposed solutions.  
 - Develop and test proof of concepts (POCs) to validate security solutions before full-scale
implementation.  
 - Contribute to development of final solution and coordonate teams  

3. Collaboration with CISO:  
 - Partner with the CISO to ensure cloud security initiatives align with the broader security strategy and organizational objectives.  
 - Provide regular updates to the CISO on the cloud security posture, risks, and mitigation plans.  
 - Assist the CISO in developing long-term security roadmaps for cloud environments.  

4. Incident Response and Monitoring:  
 - Investigate and respond to security incidents within cloud environments.  
 - Set up automated alerts and monitoring mechanisms to detect potential vulnerabilities or
misconfigurations.  
 - Collaborate with the IT and security teams to develop and maintain a robust incident response plan.  

5. Compliance and Risk Management:  
 - Ensure compliance with industry standards such as ISO 27001, GDPR, SOC 2, or similar frameworks.  
 - Conduct regular risk assessments and provide recommendations for mitigating identified risks. 
 - Stay informed about the latest regulatory changes and emerging cloud security threats.  

6. Collaboration and Training:  
 - Work closely with DevOps, IT, and development teams to integrate security best practices into
CI/CD pipelines.  
 - Provide training and awareness programs to internal stakeholders on cloud security.