Senior/Lead Cloud Security Engineer

We are seeking a Senior/Lead Cloud Security Engineer to strengthen our cloud security posture and ensure compliance across multi-cloud environments. In this role, you will collaborate with cross-functional teams to design governance policies, manage security incidents, and drive automation initiatives that safeguard our cloud infrastructure.

Responsibilities

• Assist in the design and implementation of policies and guardrails to make the cloud environment compliant with the control framework
• Coordinate with internal teams to gather requirements and translate them into actual implementations
• Track open vulnerabilities and perform remediations in coordination with respective stakeholders
• Handle cloud security operations incidents and alerts, ensuring timely response and resolution
• Support cloud security operations in reviewing alerts and incidents and driving them toward remediation
• Ensure that cloud resources are provisioned and operated according to the client's security standards
• Recommend preventive and reactive controls that can be implemented to secure the environment
• Support the creation of security dashboards and reports for cloud security operations
• Develop pipelines and Lambda functions using Python for security automation
• Automate security tasks and build scripts and bots to streamline operations

Requirements

• 6-10 years of experience in cybersecurity or security operations center roles
• Understanding of cloud infrastructure, cloud security and compliance
• Proficiency in CSPM tools
• Background in public cloud infrastructure management
• Expertise in incident management and vulnerability management
• AWS Cloud Security certification, AZ-500 (Azure Security Engineer) or CCSK, CCSP
• Knowledge of cybersecurity concepts
• Skills in Python scripting for developing pipelines and Lambda functions
• Capability to automate security tasks and build scripts and bots to streamline operations
• Proven track record of working with multinational teams
• Good presentation and communication skills, both written and spoken

Nice to have

• Familiarity with compliance standards and frameworks such as PCI-DSS, ISO 27001 and NIST 800-37
• Understanding of both AWS and Azure public cloud platforms