Cloud Security Engineer

Cloud Security Engineer

 

 

Required skills

  • Experience in Cloudflare security features
  • Experience with Qualys and Splunk
  • Experience in AWS Security- IAM, Security Groups, AWS KMS, AWS Secrets Manager, Cloud HSM, VPC flow logs, etc.
  • Perform security architecture reviews for AWS Infrastructure for existing and new services
  • Manual audit of AWS security controls and configuration and continuous verification with automation
  • Threat Modeling and Pen Testing experience related to AWS
  • Design and implement AWS Infrastructure Monitoring use cases in Splunk
  • Experience in Container Security and EKS
  • Experience in Incident response
  • Knowledge of Web Application Security and OWASP top 10

Responsibilities

Candidate will work as a member of the Security Team and assist in various day to day operational activities such as:

  • Develops, publishes, and maintains a comprehensive organization-wide information privacy and security plans, policies, procedures, and guidelines
  • Responsible for managing all aspects of the Vulnerability Risk Management Program including vulnerability identification, analysis, remediation coordination and reporting – for AWS 
  • Lead the development, implementation, and maintenance of security policies, standards, and guidelines
  • Identify and Monitor to determine if there have been any attacks. Analyze network traffic to identify anomalies and test information security controls for weaknesses
  • Design and implement safeguards to protect the system with the help of network engineers and other members of the Technology Services team
  • Respond to threats by taking mitigating actions to contain the activity and minimize damage. Participate in risk assessments and breach readiness exercises for incident management
  • Facilitate forensics analysis to determine the source of the threat. Document lessons learned as well as identify process improvements
  • Communicate security issues to management via reports, dashboards
  • Research emerging threats and work with the Security Operations Center (SOC)
  • Drive the Third party vendor security evaluation
  • Implement innovative solutions to scale the program with emphasis on automation where applicable

Application Form

    I prefer to be connected via: