Senior Cloud Security Engineer

Company Overview

[Company details are not provided.]

Job Summary

The Senior Cloud Security Engineer is responsible for safeguarding the organization's information assets by conducting comprehensive security assessments, managing security tools, monitoring threat activity, and participating in incident response processes. This role is critical in ensuring the organization adheres to security best practices and regulatory compliance, ultimately contributing to the overall security posture.

Responsibilities

• Conduct security assessments, vulnerability assessments, and penetration tests on systems and applications to identify weaknesses and recommend remediation actions.
• Monitor and analyze security alerts, events, and incidents to promptly detect and respond to threats.
• Manage and maintain security tools and technologies, such as firewalls, intrusion detection/prevention systems, and Security Information and Event Management (SIEM) systems.
• Proactively monitor Key Risk Indicators to identify non-compliance and assist in remediation with compensating controls.
• Serve as a cloud-security and cloud-compliance Subject Matter Expert (SME) for supported teams.
• Participate in incident response activities, including containment, investigation, and recovery.
• Stay updated with cybersecurity threats, vulnerabilities, and industry best practices.
• Provide security guidance for physical, virtual, and code infrastructure.
• Conduct vendor due diligence reviews, including SOC2 and vendor risk assessments.
• Drive change to improve the overall security posture of the organization.
• Ensure the protection of organizational information assets through the technical enforcement of security standards and policies.

Qualifications

• Expert understanding of common information security standards and best practices.
• Experience in security and regulatory compliance standards and frameworks.
• Ability to configure, deploy, and manage enterprise security tools such as SIEM, antivirus, intrusion prevention, data leak prevention, and application scanning and remediation.
• Solid understanding of the System Development Life Cycle (SDLC) to provide security recommendations and oversight.
• Azure Cloud security experience (Preferred: 2 years).
• Minimum 3 to 4 years of experience in cloud security.
• Hands-on experience securing public cloud workloads in a hybrid corporate environment.
• Knowledge of security controls, configuration management, and vulnerability management in public cloud environments.
• Strong understanding of firewalls, Web Application Firewalls (WAFs), and Intrusion Prevention Systems (IPS).
• Excellent problem-solving and analytical skills with the ability to quickly isolate problems, collect data, and draw valid conclusions.
• Practical understanding of Agile, ITIL, monitoring, and metrics.

Preferred Skills

• Security, risk, and compliance experience specifically with Cloud Platforms.
• Familiarity with emerging cybersecurity technologies and solutions.

Experience

• 5 to 9 years in Information Security.
• At least 2 years of dedicated experience in Azure Cloud Security.

Environment

[Work setting details not provided; please clarify.]

Salary

[Salary details are not provided; please clarify.]

Growth Opportunities

[Opportunities for advancement not provided; please clarify.]

Benefits

[Information on benefits not provided; please clarify.]