Sr. lead - cloud security

Designation - Sr. Lead - Cloud SecurityExperience - 8 - 12 yearsLocation - Remote(India)Essential skills : Cloud security framework; Strong scripting skills with Power Shell and experience managing Linux systems.Solid understanding of version control tools, particularly Git.Experience with cloud platforms, including AWS, Azure and GCP.Problem solving and troubleshooting skills.Desired skills : Good communication skillsExperience with Docker and container orchestration tools.Knowledge of microservices architecture and related best practices.Summary : Resource must exhibit strong trouble shooting and problem-solving skills along with knowledge of cloud architecture, security features, and cloud platforms such as AWS. Resource must be well-versed with incident management; must have information security auditing experience.Roles & Responsibilities : Security Integration in Dev Ops Pipelines :

• Embed security tools and practices in CI / CD pipelines to detectand mitigate vulnerabilities.
• Implement static and dynamic code analysis, vulnerabilityscanning, and container security checks.Infrastructure Security :
• Design and implement secure infrastructure leveraging cloudservices and Infrastructure as Code (Ia C).
• Ensure configuration management for servers and cloudenvironments meets security standards.Automation and Monitoring :
• Automate security testing and monitoring processes to maintaincompliance and reduce manual intervention.
• Develop and maintain monitoring systems to detect anomaliesand security breaches.Collaboration and Training :
• Collaborate with cross-functional teams to address securityconcerns during software development and deployment.
• Provide training and awareness on secure coding practices andDev Sec Ops tools.Incident Management :
• Respond to security incidents, conduct root cause analysis, andimplement preventive measures.
• Maintain and test incident response plans.Compliance and Governance :
• Ensure systems adhere to regulatory requirements and industrybest practices.
• Conduct periodic security audits and assessments to maintaincompliance.
• Considering dependencies, relationships, and integration pointsto ensure proper solution integration with other systems whenapplicable
• Responsibility for compliance with applicable industry standards,corporate policies and procedures
• Maintaining high-level of client satisfaction
• Leveraging knowledge and experience of technicalimplementation related to IT Infrastructure Library (ITIL)processes, workflow customization, ticketing, processautomation, report development, dashboard creation, andsystem configurationsEssential Experience :
• Solid experience in software development and operations,with a focus on security.
• Strong knowledge of Dev Ops principles and practices,including CI / CD pipelines, version control systems, andautomated testing frameworks.
• Proficiency in scripting and automation using languages suchas Python, Ruby, or Power Shell.
• Familiarity with cloud platforms and services (e.g., AWS,Azure, GCP) and their security considerations.
• Experience with containerization technologies (e.g., Docker,Kubernetes) and associated security practices.
• Knowledge of security frameworks and standards (e.g.,OWASP, NIST, ISO 27001) and their application in softwaredevelopment.
• Understanding of secure coding practices and commonvulnerabilities (e.g., OWASP Top 10) and their mitigationtechniques.
• Strong analytical and problem-solving skills, with the abilityto identify and address security risks and incidentseffectively.Desired Experience :
• Excellent communication and collaboration skills, with theability to work effectively with cross-functional teams andstakeholders.
• Knowledge of microservices architecture and related bestpracticesCertifications, if any : AWS Security, CEH, ISO 27001