Talent.com
No longer accepting applications
CodeZio - Cloud Security Specialist - Threat Detection & Monitoring

CodeZio - Cloud Security Specialist - Threat Detection & Monitoring

CodeZioPune
30+ days ago
Job description

Job Title : Cloud Security Specialist

Experience : 3 - 7 Years

Location : Pune / Hyderabad

Employment Type : Full-Time

Notice Period : 30 Days (Maximum)

Role Summary :

We are seeking a proactive and skilled Cloud Security Specialist to join our dynamic security team. The successful candidate will be instrumental in designing, implementing, and managing robust security controls across our multi-cloud environments (AWS, Azure, GCP). This role demands a strong blend of technical expertise, operational knowledge, and a strategic mindset to secure our cloud infrastructure and applications against evolving threats.

Key Responsibilities :

Cloud Security Architecture & Implementation :

  • Design and Implement Security Controls : Design, configure, and maintain security services and controls within cloud platforms (e.g., Security Groups, Network ACLs, Azure Firewall, AWS WAF, VPC / VNet security, etc.).
  • Identity and Access Management (IAM) : Manage and enforce IAM policies, roles, and permissions across cloud platforms to ensure the principle of Least Privilege. Implement Multi-Factor Authentication (MFA) and Single Sign-On (SSO) solutions.
  • Data Protection : Implement encryption mechanisms (at rest and in transit) and data loss prevention (DLP) strategies for cloud storage and databases.
  • DevSecOps Integration : Collaborate with DevOps teams to integrate security into the CI / CD pipeline, promoting a "security-as-code" and DevSecOps culture using tools like Terraform, CloudFormation, or Ansible.

Monitoring, Operations & Incident Response :

  • Threat Detection & Monitoring : Configure and utilize Security Information and Event Management (SIEM) tools and Cloud Security Posture Management (CSPM) solutions to continuously monitor cloud environments for threats, vulnerabilities, and misconfigurations.
  • Vulnerability Management : Conduct regular vulnerability assessments, security testing, and penetration testing on cloud assets and applications, and drive remediation efforts.
  • Incident Response : Serve as a key responder during security incidents, performing triage, containment, root cause analysis, and post-incident remediation in the cloud environment.

    • Governance, Risk & Compliance (GRC) :

  • Compliance : Ensure cloud deployments and operations adhere to internal security policies and external regulatory standards (e.g., GDPR, HIPAA, SOC 2, ISO 27001, PCI-DSS).
  • Policy Enforcement : Develop, document, and enforce cloud security standards, policies, and procedures.
  • Risk Assessment : Conduct security risk assessments and threat modeling for new and existing cloud services and architectures.

    • Required Skills and Qualifications :

  • Experience : 3 to 7 years of relevant experience in Information Security, with a minimum of 2-3 years directly focused on Cloud Security in a production environment.
  • Cloud Platforms : Hands-on experience with at least one major Public Cloud Provider (AWS, Microsoft Azure, or GCP). Multi-cloud experience is a significant advantage.

    • Core Cloud Security Skills :

  • Strong knowledge of Cloud Networking and security services.
  • Expertise in Identity and Access Management (IAM / RBAC) concepts and implementation.
  • Familiarity with Infrastructure as Code (IaC) tools (Terraform, CloudFormation, etc.).
  • Experience with security monitoring and logging tools (e.g., CloudTrail, Azure Monitor, Splunk).
  • Technical Foundations : Strong understanding of security principles, including application security, network security, operating systems (Linux / Windows), and secure development lifecycles.
  • Proficiency in at least one scripting language (e.g., Python, Bash, PowerShell) for automation of security tasks.
  • Education : Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.

    • Preferred Qualifications :

    Certifications (Highly Desirable) :

  • Certified Cloud Security Professional (CCSP)
  • Certified Information Systems Security Professional (CISSP)
  • Vendor-specific certifications (e.g., AWS Certified Security - Specialty, Azure Security Engineer Associate - AZ 500, Google Professional Cloud Security Engineer).
  • Experience with Container Security technologies (Docker, Kubernetes) and related security tools.
  • Prior experience in a consulting environment or managing security for a large-scale enterprise cloud migration.

    • Behavioral Competencies :

  • Excellent analytical and problem-solving skills with a keen attention to detail.
  • Strong verbal and written communication skills, capable of explaining complex security issues to technical and non-technical stakeholders.
  • Self-motivated, proactive, and able to work effectively both independently and as part of a collaborative team.
  • Commitment to continuous learning and staying updated with the latest cloud security trends and technologies.

    • (ref : hirist.tech)

    Create a job alert for this search

    Cloud Security Specialist • Pune