Job Description
As a Cloud Security Operations Engineer, you will be responsible for designing, implementing, monitoring, and improving cloud security controls across multi-cloud environments. You will work closely with Cloud Infrastructure, DevOps, SOC, and Engineering teams to protect cloud workloads, ensure compliance, automate security operations, and respond to security incidents.
The ideal candidate has strong hands-on experience in cloud security, identity and access management, SIEM, DevSecOps, automation, and cloud governance.
Key Responsibilities
Cloud Security Architecture
- Design and implement secure cloud architectures across AWS, Azure, and GCP.
- Implement cloud-native security services including:
- AWS Security Hub
- Microsoft Defender for Cloud
- Google Security Command Center
- Configure secure networking including VPCs, NSGs, Security Groups, WAFs, VPNs, and Load Balancers.
- Implement encryption using KMS, HSM, Key Vault, and Cloud KMS.
- Ensure secure infrastructure deployment using Infrastructure-as-Code (IaC).
Identity & Access Management (IAM)
- Design and manage IAM policies, RBAC, and least-privilege access.
- Implement Multi-Factor Authentication (MFA).
- Manage Privileged Access Management (PAM) solutions.
- Review service accounts and access permissions.
- Conduct periodic access reviews and audits.
Security Monitoring & Incident Response
- Monitor cloud security events using SIEM platforms.
- Investigate security alerts and incidents.
- Configure log collection from cloud environments.
- Perform threat detection and vulnerability remediation.
- Conduct root cause analysis following security incidents.
- Support SOC operations and security investigations.
Cloud Security Posture Management (CSPM)
- Implement and manage CSPM tools.
- Identify cloud misconfigurations.
- Recommend and implement remediation measures.
- Continuously improve cloud security posture.
Data Protection & DLP
- Implement cloud Data Loss Prevention (DLP) policies.
- Configure Microsoft Purview, Google DLP, or equivalent CASB solutions.
- Monitor and investigate DLP alerts.
- Classify sensitive enterprise data.
- Support compliance initiatives including GDPR, ISO 27001, SOC 2, HIPAA, and PCI-DSS.
DevSecOps & Automation
- Integrate security controls into CI/CD pipelines.
- Automate security tasks using:
- Python
- PowerShell
- Bash
- Develop Infrastructure-as-Code using:
- Terraform
- CloudFormation
- ARM Templates
- Implement SAST, DAST, dependency scanning, and container security.
- Secure Kubernetes and Docker workloads.
Compliance & Governance
- Support cloud security audits.
- Ensure compliance with organizational security policies.
- Prepare security reports and dashboards.
- Work closely with Governance, Risk & Compliance (GRC) teams.
No Referrers Available
There are currently no referrers available for this job. You can still apply, will let you know once there is any referrer available.
