Job Description:
We are looking for a skilled
Cloud Security Engineer to join our IT team and safeguard our cloud infrastructure. The Cloud Security Engineer will be responsible for designing, implementing, and managing security solutions to protect our cloud environments. This role requires a deep understanding of cloud platforms, security best practices, and the ability to assess, mitigate, and respond to potential threats.
Key Responsibilities:
- Design and implement security controls to protect cloud infrastructure across AWS, Azure, and/or Google Cloud platforms
- Monitor cloud systems for security breaches and vulnerabilities, and respond to incidents in a timely manner
- Develop and enforce cloud security policies, procedures, and best practices
- Implement and manage identity and access management (IAM) solutions, ensuring proper user privileges and roles
- Automate security processes and integrate security tools into CI/CD pipelines to ensure secure development and deployment
- Perform regular vulnerability assessments and penetration tests, and work with development teams to remediate security risks
- Implement encryption protocols, key management, and data protection solutions in cloud environments
- Stay up to date with the latest cloud security threats and trends, and proactively identify new security solutions
- Collaborate with DevOps, IT, and development teams to ensure cloud security practices are integrated into system architecture
- Ensure compliance with industry regulations, including SOC 2, HIPAA, GDPR, and others relevant to the business
Qualifications:
- Bachelor's degree in computer science, information security, or related field
- 3+ years of experience in cloud security or related roles
- Strong experience with cloud platforms such as AWS, Azure, or Google Cloud
- In-depth knowledge of cloud security frameworks, IAM, encryption methods, and vulnerability management
- Experience with security tools such as SIEM, firewalls, intrusion detection/prevention systems (IDS/IPS), and vulnerability scanners
- Knowledge of DevSecOps practices and integrating security into CI/CD pipelines
- Scripting skills in Python, Bash, or other languages to automate security processes
- Familiarity with compliance standards such as SOC 2, HIPAA, GDPR, and NIST
- Excellent problem-solving, analytical, and communication skills
Preferred Qualifications:
- Certifications such as AWS Certified Security Specialty, Certified Cloud Security Professional (CCSP), or CISSP
- Experience with container security for Docker and Kubernetes environments
- Knowledge of Zero Trust architecture and principles