Job Description

Core responsibilities include:


Cloud Security Controls: Design and implement security controls across AWS, Azure environments. Continuously enhance our cloud security posture management (CSPM) program to identify and remediate risks in configurations and policies. Ensure SOC 2 cloud security controls are always executed and auditable. Container & Kubernetes Security: Oversee security for containerized applications and Kubernetes clusters. Establish best practices for container image security, pod security policies, and cluster network segmentation to protect our microservices. Overall, You must:


Ensure cloud systems and solutions are secure by design and champion a secure guardrails approach--automating security checks and educating teams to build secure systems from the ground up. Conduct continuous vulnerability and compliance validation to ensure ongoing adherence to security policies and regulations. Monitor cloud environments for security incidents and ensuring rapid response through automated mechanisms. Serve as subject matter expert on cloud technologies and security solutions Perform technical security design, architecture, change and/or configuration audits/reviews on our hosting environments including Azure & AWS, servers, network devices, endpoints, and security technologies deployed (CNAPP, MDM, WAF, DDoS, etc.) Collaborate with cross-functional teams, including developers, cloud engineers, architects, and operations, to embed security in critical initiatives including API security. Foster a culture of continuous improvement, innovation, and knowledge sharing across the organization and staying updated on the latest cloud security threats and advancements.

Your profile:

Bachelor's degree in computer science, Information Security, or related professional experience. 6+ years' experience in cloud security 3+ years hand-on experience working with containerized environments Excellent understanding of Azure, AWS, k8s Experience working with cloud security posture management tooling Hands-on experience on threat modeling and security architecture reviews. Hands-on experience of working with compliance requirements and turning them to technical controls: Ability to implement and manage security controls in cloud environments Knowledge of cloud security best practices and industry standards Strong analytical and problem-solving skills Ability to think critically and make data-driven decisions Excellent documentation skills, including the creation of procedures, process documentation, and user documentation Certifications: Relevant certifications such as Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), or AWS Certified Security - Specialty are preferred. Technical Skills: Proficiency in cloud platforms (e.g., AWS, Azure), security tools, and technologies (e.g., firewalls, intrusion detection systems, encryption). Knowledge: Strong understanding of cloud security principles, risk management, and compliance frameworks. Soft Skills:


The ability to collaborate effectively with cross-functional teams. Keen attention to detail and a vigilant, solutions-oriented mindset Excellent organizational skills and the ability to work under pressure on multiple projects, balance competing priorities, and meet deadlines both when working alone and with others. Self-motivated and able to complete projects with minimal supervision. Ability to rapidly evaluate, research, learn, and apply advanced and emerging data security principles, theories, and concepts. Positive attitude and outstanding, proactive problem-identification and problem-solving skills. * Strong interpersonal and project management skills, and the ability to collaborate with colleagues across the enterprise and to work effectively in a matrixed, geographically distributed organization.