Cloud security
Number of Openings |
1 |
ECMS ID in sourcing stage |
527026 |
Assignment Duration |
12 months |
Total Yrs. of Experience |
7+ years |
Relevant Yrs. of experience |
5+ years |
Detailed JD (Roles and Responsibilities) |
Lead the design and implementation of secure cloud landing zones for AWS, Azure, and GCP, incorporating robust security controls for core services and features. |
Design and implement hybrid and multi-cloud security solutions that seamlessly integrate public cloud services with traditional hosting and delivery models. | |
Conduct in-depth evaluations of cloud security posture, identify Gaps and establish an actionable roadmap to remediate potential risks. | |
Design and implement cloud security controls across all the security domains (Cloud Workload, Network, Identity, Vulnerability, Governance, Monitoring and Data etc.) within Azure, AWS and GCP. | |
Create Automation scripts using Infrastructure as Code (IaC) tools like Terraform, Ansible, Chef, or Puppet to ensure secure and automated deployments. | |
Oversee the development of automation scripts to streamline security operations, improve system reliability, and enhance monitoring capabilities. | |
Leverage industry best practices (NIST, CIS) to design and implement effective security and compliance frameworks. | |
Keep updated with emerging cloud security trends such as Solutions, Controls, Threats, Vulnerabilities and Compliance standards. | |
Build strong client relationships, understand their business needs, and communicate complex technical concepts effectively. | |
Requirements: | |
Minimum 8+ years of experience in cybersecurity, with at least 4 years in cloud security roles (AWS / Azure / GCP). | |
Design and implement robust, scalable cloud security architecture based on Secure Landing Zone tailored to meet client needs and align with industry standards and compliance frameworks. | |
Deep understanding and hands on experience of cloud security controls and the ability to leverage advanced security tools like CNAPP, CIEM, and CWPP etc. ( PaloAlto Prisma, WIZ, Aqua, Orca, Crowdstrike and etc.) | |
Experience on Azure, AWS and GCP platform, with security controls like CSPM (Microsoft Defender for Cloud / Security Hub), CNAPP, EDR (Microsoft Defender CWPP), Key Vault, DDoS (Azure DDoS/ AWS Shield), Security Groups, VNP, Firewall, SASE, Secure Web Gateway (FrontDoor / AWS WAF) and Serverless Security, etc. | |
Desing and implement cloud security controls across all the security domains (Network, Identity and Access, Vulnerability, Environment Governance, Monitoring and Data Privacy) within Azure and AWS | |
Proficient in frameworks like CSA Cloud Controls Matrix, NIST Cybersecurity Framework, or similar. | |
Hands-on experience in two or more core cloud security domains (e.g., IAM, Network Security, Governance etc.). | |
Knowledge on Compliance Standards like HIPAA, PCI DSS, GDPR, and other relevant regulations. | |
Extensive hands-on experience with tools like Experience in Automation, scripting Cloud Formation/ Terraform, and DevSecOps to secure cloud infrastructure deployment | |
Create and maintain automation scripts to streamline cloud security processes, enhance system reliability, and reduce manual interventions | |
Mandatory skills |
Cloud security |
Desired/ Secondary skills |
|
Domain |
Cyber Sec |
Max Vendor Rate in Per Day (Currency in relevance to work location) |
12300 INR/Day |
Work Location given in ECMS ID |
Mysore, Pune |
WFO/WFH/Hybrid WFO |
Hybrid WFO |
BG Check (Before OR After onboarding) |
After onboarding |
Is there any working in shifts from standard Daylight (to avoid confusions post onboarding) YES/ NO |
Yes |