Talent.com
L3 Security Specialist - Cloud Security & DevOps

L3 Security Specialist - Cloud Security & DevOps

TOCUMULUStamil nadu, tamil nadu, in
1 day ago
Job description

Experience Required

8-12 years in Information Security with minimum 5 years in cloud security and SIEM operations

Cloud Security Management

  • Design, implement, and maintain security architectures across Azure and AWS multi-cloud environments
  • Lead security assessments, vulnerability management, and penetration testing initiatives
  • Architect and enforce security policies, standards, and best practices for cloud infrastructure
  • Manage identity and access management (IAM) policies, roles, and permissions across both platforms
  • Implement and maintain security monitoring, logging, and SIEM solutions
  • Lead incident response activities and conduct root cause analysis for security events

SIEM Operations & Security Monitoring

  • Design, deploy, and manage enterprise SIEM platforms (Splunk, Azure Sentinel, IBM QRadar, LogRhythm)
  • Develop and optimize correlation rules, alerts, and detection use cases
  • Create custom parsers and data connectors for log ingestion from multiple sources
  • Implement advanced threat hunting and analytics using SPL, KQL, or similar query languages
  • Manage log retention, archival, and compliance requirements
  • Integrate SIEM with SOAR platforms for automated incident response
  • Tune alert thresholds to minimize false positives while maintaining detection effectiveness
  • Generate security metrics, dashboards, and executive-level reports
  • Conduct regular health checks and performance optimization of SIEM infrastructure

    • Major Security Areas

    1. Identity & Access Management (IAM)

  • Implement least privilege access and role-based access control (RBAC)
  • Manage Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Privileged Access Management (PAM)
  • Configure Azure AD, AWS IAM, Okta, and other identity providers
  • Implement Just-In-Time (JIT) access and Privileged Identity Management (PIM)
  • Conduct access reviews and entitlement management

    • 2. Data Security & Encryption

  • Implement data classification and Data Loss Prevention (DLP) solutions
  • Manage encryption at rest and in transit across all platforms
  • Configure key management systems (KMS) and Hardware Security Modules (HSM)
  • Implement database security controls and monitoring
  • Design data masking and tokenization strategies

    • 3. Endpoint Security

  • Deploy and manage EDR / XDR solutions (CrowdStrike, Microsoft Defender, Carbon Black)
  • Implement anti-malware, host-based firewalls, and security agents
  • Manage mobile device management (MDM) and endpoint compliance
  • Configure application whitelisting and device control policies

    • 4. Vulnerability Management

  • Lead enterprise vulnerability assessment programs
  • Manage scanning tools (Qualys, Nessus, Rapid7, Tenable)
  • Prioritize vulnerabilities using CVSS scoring and business context
  • Track remediation efforts and report on security posture
  • Conduct regular penetration testing and red team exercises

    • 5. Threat Intelligence & Hunting

  • Leverage threat intelligence feeds and platforms (MISP, ThreatConnect, Recorded Future)
  • Conduct proactive threat hunting using MITRE ATT&CK framework
  • Analyze indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs)
  • Develop custom threat detection rules and signatures
  • Participate in threat intelligence sharing communities

    • 6. Incident Response & Forensics

  • Lead security incident response following NIST guidelines
  • Conduct digital forensics and malware analysis
  • Manage security operations center (SOC) escalations
  • Develop and maintain incident response playbooks
  • Coordinate with external stakeholders during breaches

    • 7. Cloud Security Posture Management (CSPM)

  • Implement CSPM tools (Prisma Cloud, CloudGuard, Azure Security Center)
  • Continuously monitor cloud configurations for security risks
  • Remediate misconfigurations and security drift
  • Enforce cloud security baselines and CIS benchmarks

    • 8. Compliance & Risk Management

  • Ensure compliance with ISO 27001, SOC 2, GDPR, HIPAA, PCI-DSS, NIST, FedRAMP
  • Conduct security audits and prepare compliance reports
  • Perform risk assessments and develop risk mitigation strategies
  • Manage security governance frameworks
  • Develop and maintain security documentation, runbooks, and procedures

    • Required Skills & Expertise

    Cloud Platforms

  • Azure : Azure Security Center, Microsoft Defender for Cloud, Azure Sentinel, Azure AD, Azure Policy, Azure Firewall, Application Gateway, NSGs, Azure Monitor, Azure Key Vault, Microsoft Defender for Identity
  • AWS : AWS Security Hub, GuardDuty, AWS IAM, Security Groups, AWS WAF, CloudTrail, Config, Inspector, Macie, KMS, CloudWatch, Systems Manager, AWS Shield

    • SIEM & Security Monitoring

  • SIEM Platforms : Expert-level proficiency in Splunk Enterprise Security, Azure Sentinel (Microsoft Sentinel), IBM QRadar, LogRhythm, Elastic SIEM
  • Query Languages : SPL (Splunk), KQL (Kusto Query Language), SQL for security analytics
  • Log Management : Log aggregation, parsing, normalization from diverse sources (Windows, Linux, cloud, network devices, applications)
  • Correlation & Analytics : Creating correlation searches, threat detection rules, behavioral analytics
  • SOAR Integration : Integration with Security Orchestration and Automated Response platforms (Splunk SOAR, Azure Logic Apps, Palo Alto Cortex XSOAR)
  • Threat Detection : Building use cases for ATT&CK framework, anomaly detection, user behavior analytics (UEBA)

    • Security Tools & Technologies

  • Vulnerability Management : Qualys, Nessus, Rapid7, Tenable, OpenVAS
  • EDR / XDR : CrowdStrike Falcon, Microsoft Defender for Endpoint, Carbon Black, SentinelOne
  • CASB : Microsoft Defender for Cloud Apps, Netskope, Zscaler
  • DLP : Symantec DLP, Microsoft Purview, Forcepoint
  • PAM : CyberArk, BeyondTrust, Thycotic Secret Server
  • API Security : Apigee, Kong, AWS API Gateway security

    • Security Frameworks & Standards

  • NIST Cybersecurity Framework (CSF)
  • NIST SP 800-53, 800-171
  • CIS Benchmarks and Controls
  • OWASP Top 10 & OWASP ASVS
  • MITRE ATT&CK Framework
  • Zero Trust Architecture (NIST SP 800-207)
  • Cloud Security Alliance (CSA) Cloud Controls Matrix
  • ISO 27001 / 27002
  • PCI-DSS, HIPAA, GDPR, SOC 2

    • Highly Preferred certifications :

  • Certified Cloud Security Professional (CCSP)
  • GIAC Security Essentials (GSEC) or GIAC Certified Incident Handler (GCIH)
  • Certified Ethical Hacker (CEH) or Offensive Security Certified Professional (OSCP)
  • Certified Kubernetes Security Specialist (CKS)
    • Create a job alert for this search

    Security Specialist • tamil nadu, tamil nadu, in

    Related jobs
    • Promoted
    Senior Security Engineer - Infrastructure Security

    Senior Security Engineer - Infrastructure Security

    Poshmarktamil nadu, tamil nadu, in
    Security team at Poshmark is responsible for securing our application platform, cloud infrastructure, and IT systems to protect Poshmark and its 60 million Community members.As a AWS and Infrastruc...Show moreLast updated: 20 days ago
    • Promoted
    • New!
    1. Cloud Security with DevOps – Pre-Sales – 10+ Years

    1. Cloud Security with DevOps – Pre-Sales – 10+ Years

    OptiLnXtiruchirappalli, India
    Expertise in Azure cloud services (AKS, Key Vault, Monitor, DevOps, Azure AD).Experience with Azure Marketplace publishing and compliance requirements. Hands-on in scalability, security, and multi-t...Show moreLast updated: 20 hours ago
    • Promoted
    Oracle Cloud Security and Risk Management (RMC) Consultant

    Oracle Cloud Security and Risk Management (RMC) Consultant

    AtomTiruchirappalli, IN
    Job Title : Oracle Cloud Security and Risk Management (RMC) Consultant.We are seeking an experienced Oracle Cloud Security and Risk Management (RMC) Consultant to join our team.The ideal candidate w...Show moreLast updated: 30+ days ago
    • Promoted
    Azure WAF & Security Specialist

    Azure WAF & Security Specialist

    Valintell Solutions LLPtiruchirappalli, India
    We are seeking a skilled and proactive Azure Security Engineer to manage and monitor Azure landing zones and Web Application Firewall (WAF) policies. The ideal candidate will collaborate closely wit...Show moreLast updated: 1 day ago
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    interface.aiTiruchirappalli, IN
    Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show moreLast updated: 30+ days ago
    • Promoted
    Tanium Security Remediation Specialist

    Tanium Security Remediation Specialist

    HCLTechtamil nadu, tamil nadu, in
    Tanium Security Remediation Specialist.We are seeking a skilled security remediation specialist with expertise in Tanium to join our team. The successful candidate will be responsible for reviewing,...Show moreLast updated: 23 days ago
    • Promoted
    Cyber Security Sales Specialist

    Cyber Security Sales Specialist

    Cloud Armor IT ConsultancyTiruchi, Tamil Nadu, India
    Here’s a professional Job Description draft for a Cybersecurity Sales Specialist tailored to your business offerings : .Job Title : Cybersecurity Sales Specialist Location : Hybrid / Remote / [Insert C...Show moreLast updated: 1 day ago
    • Promoted
    Contractor Security Engineer Level 3 – GRC Tech Solutions

    Contractor Security Engineer Level 3 – GRC Tech Solutions

    MindlanceTiruchirappalli, IN
    Remote Role | Contractor Security Engineer Level 3 – GRC Tech Solutions.This position focuses on enabling process clarity, automation, and efficiency while creating insights that empower our busine...Show moreLast updated: 15 days ago
    • Promoted
    • New!
    Cyber Security Senior Analyst - Cloud security

    Cyber Security Senior Analyst - Cloud security

    SG Global Solution Centretiruchirappalli, tamil nadu, in
    We are seeking a skilled Cloud Security Senior Analyst to join our team.The ideal candidate will have extensive experience in cloud security, particularly with AWS. This role involves ensuring the s...Show moreLast updated: 13 hours ago
    • Promoted
    • New!
    Security Operations Center Analyst

    Security Operations Center Analyst

    ValueLabstiruchirappalli, India
    Incident Handling & Response, Phishing email Analysis.SIEM Platforms- Monitoring, Analysis, Alerts & Reports ( LogRhythm Preferably). Knowledge of OSI layers & Protocols.Network & Host based Firewal...Show moreLast updated: 20 hours ago
    • Promoted
    Sr. Lead - Cloud Security

    Sr. Lead - Cloud Security

    Sycamore Informatics Inc.Tiruchirappalli, IN
    Cloud security framework; Strong scripting skills with PowerShell and.Solid understanding of version control tools, particularly Git. Experience with cloud platforms, including AWS, Azure and GCP.Pr...Show moreLast updated: 30+ days ago
    • Promoted
    AppScan Product _Lead Cloud DevOps Engineer

    AppScan Product _Lead Cloud DevOps Engineer

    HCLSoftwareTiruchirappalli, IN
    HCL Software” : - Is a Product Development Division of HCL Tech : That operates its primary Software business.At HCL Software we Develop, Market, Sell and Support over 20 Product families in the area...Show moreLast updated: 30+ days ago
    • Promoted
    Security Operations Center Analyst

    Security Operations Center Analyst

    Tata Consultancy Servicestiruchirappalli, India
    We await your innovation at TCS : Hiring |.Security Operations Center Analyst.Required Total Experience : 5+ years.Work location : Hyderabad, Bangalore. Required Skills Proficiency with.IDS / IPS, firewa...Show moreLast updated: 1 day ago
    • Promoted
    • New!
    Azure Security Engineer – Encryption & Key Management

    Azure Security Engineer – Encryption & Key Management

    DigiHelic Solutions Pvt. Ltd.tiruchirappalli, tamil nadu, in
    Azure Security Engineer – Encryption & Key Management.The ideal candidate will have hands-on experience with.Microsoft Azure Security Services. Implement, configure, and manage.Support internal team...Show moreLast updated: 13 hours ago
    • Promoted
    Azure Security Engineer – Remediation

    Azure Security Engineer – Remediation

    HCLTechtamil nadu, tamil nadu, in
    Job Title : Azure Security Engineer – Remediation Liaison.We are seeking a highly skilled.This role requires both hands-on technical expertise in Microsoft Azure and the ability to collaborate effec...Show moreLast updated: 23 days ago
    • Promoted
    Security (DevSecOps)and QA (Automation)

    Security (DevSecOps)and QA (Automation)

    PioVation GmbHTiruchi, Tamil Nadu, India
    If you care about European-grade safety, quality, and compliance, read on.Senior Security Engineer (DevSecOps) What we’re looking for : Application & cloud security (threat modeling, secure SDLC) Ku...Show moreLast updated: 1 day ago
    • Promoted
    Security Operations Center Analyst - Contract

    Security Operations Center Analyst - Contract

    Dexian Indiatamil nadu, tamil nadu, in
    Bachelor's degree in Cybersecurity, Information Technology, or related field.SOC operations or cybersecurity roles.Experience with license management and compliance processes.Hands-on experience wi...Show moreLast updated: 12 days ago
    • Promoted
    Senior Security Consultant (Cloud Security)

    Senior Security Consultant (Cloud Security)

    Claranet Indiatiruchirappalli, tamil nadu, in
    Founded at the beginning of the dot.CEO Charles Nasser had a light bulb moment to develop a truly customer-focused IT business. Since then, Claranet has grown from an Internet Service Provider (ISP)...Show moreLast updated: 1 day ago