STG Labs - Cloud Security Engineer - Azure/GCP (5-7 yrs)

STG Labs
Posted on

Experience
5 - 7 yrs
Job Location
Bengaluru, India
Vacancy
1
Designation
Cloud Security Engineer
Job Type
ONSITE

Job Description

Job Highlights :

- 5+ years in technology automation and cloud security with expertise in ISO 27001, HIPAA, NIST, GDPR compliance, GCP and Azure security, Terraform, Ansible, scripting, CISSP or CISM certified.

- Create and secure cloud infrastructure, manage security posture, perform penetration testing, implement DAST/SAST, monitor incidents, conduct audits, and collaborate on cyber resilience.

Job Details :

Position : Cloud Security Engineer

Department : Information Security Technical

Location : Bangalore

Reports To : Senior Information Security Officer

Job Description :

Responsible for assessing, monitoring, and providing advice on the secure operations of both the cloud environment hosting our customer services and the corporate IT infrastructure, including the platforms, software, installation, maintenance, and improvement of both environments.

Be part of the development of new designs and information security strategies across our cloud-based applications, including infrastructure, platform, and SaaS.

Responsibilities :

- Creating cloud-based infrastructure and programs including implementing identity and access management and configuring cloud environments securely.

- Managing cloud security posture management, identifying, and prioritizing security risks and working with stakeholders on remediation plans.

- Performing penetration testing and threat simulations to identify potential risks.

- Monitor and develop testing strategies together with software development teams, including the review and implementation of DAST, SAST and regression test software as part of the build cycle.

- Managing and reviewing cryptography and encryption.

- Monitoring for and responding to security incidents.

- Keeping infrastructure current, making recommendations, and continually improving security technologies.

- Developing mechanisms to align with the adoption and usage of current and emerging technologies.

- Analyzing, designing, developing, and reviewing programs, shell scripts, tests, and infrastructure automation capabilities.

- Working with analysts, engineers, developers, and architects across the organization to review and address risks and continually improve cyber resilience.

- Carry out internal audits to evaluate business risks on both a technical and operational level.

Requirements :

- 5+ years of hands-on technical expertise in technology automation, implementation, integration, and/or deployment.

- Experience with compliance and common industry security standards.

- Understanding architectural implications of meeting any industry standards such as ISO 27001, HIPAA, NIST frameworks, GDPR and other privacy regulation are a plus.

- Understanding of Cloud Security Concepts (SaaS, PaaS, IaaS), Network and Application Security and/or Data protection.

- Familiar with the Google Cloud Provider (GCP) and Microsoft Azure infrastructure and security solutions.

- Knowledge of Terraform, Ansible, Automox, PowerShell, python scripting languages is preferred.

- Knowledge of application and cloud security industry leading standards.

- CISSP, CISM or equivalent certifications.

No Referrers Available

There are currently no referrers available for this job. You can still apply, will let you know once there is any referrer available.