Cloud Security engineer (Devops)

Skills Required:

● Masters/Bachelors degree required in Computer Science/Engineering, Software Engineering or Equivalent discipline.

● 5+ years of total experience in Software Product Development organization(s) with at least 3 years of experience in Cloud Security.

● Design and implement secure cloud architectures and configurations, considering factors like identity and access management (IAM), SEIM, and data encryption.

● Deploy, configure, and manage cloud-native security tools and solutions, such as firewalls, intrusion detection/prevention systems, and vulnerability scanners.

● Develop and enforce security policies, procedures, and standards for cloud environments.

● Investigate and respond to cloud security incidents, including data breaches and unauthorized access, performing forensic analysis and providing detailed reports.

● Ensure cloud environments comply with relevant industry regulations and security standards (e.g., GDPR, HIPAA, SOC 2).

● Work with other engineering teams, cloud architects, and security stakeholders to identify and address security risks.

● Conduct regular security audits and assessments to identify vulnerabilities and ensure security posture.

● Understanding of network security concepts and technologies.

● Experience with cloud security tools and solutions.

● Knowledge of industry regulations and security standards.

● Hands-on experience in owning and operating mission-critical, large-scale product operations like provisioning, deployment, upgrades, patching and incidents in Production on cloud.

● Should ensure high-availability and scalability of our Production software by working with engineering, wherever required.

● Must have working knowledge on AWS services like VPC, EC2, EKS S3 , IAM etc.

● Proficient and competent skills in Infrastructure as code (IaC) like Terraform

● Code/scripting like Python/BASH, DVCS like Git.

● Strong problem solving, troubleshooting and analytical skills demonstrated in past projects.

● Experience working in an Agile development environment.

● Experience with enterprise monitoring systems is highly desirable.

Responsibilities:

● Build and deployment of secured platforms on Production, Staging and other environments on cloud as required.

● Work closely with the Security & Compliance team to help with data points needed for various audits; also, work closely with the rest of the engineering team to triage and fix any security related gaps identified through programs like HackerOne.

● Develop and enforce security policies, procedures, and standards for cloud environments.

● Continuously raise standard of engineering excellence by implementing best Cloud Security and DevSecOps practices