Cloud Security and Automation Engineer

About The Position

Requirements

• 3+ years relevant experience and a Bachelor's degree OR Any equivalent combination of education and experience.
• Cloud Security knowledge and best practices in GCP, AWS environments.
• Cloud security posture management understanding to provide remediation advisory.
• Cloud security evidence collection and forensics.
• Experience with infrastructure-as-code tools like CloudFormation, Terraform, etc.
• Excellent communication and documentation skills
• Hands-on experience with Docker containers in Kubernetes environments
• Collaborative mindset to work along cross-functional teams.

Nice To Haves

• Cloud native security tools management.
• Manage CSPM solution. Preferably Wiz.
• Understanding on vulnerability management on cloud environments (such as CSPM findings, configuration findings, etc.).
• Industry cybersecurity standards (such as PCI, ISO 27000 Family, NIST, CIS, SOC 2, etc.)
• Basic DFIR processes in cloud environments.
• Collaborative mindset.
• Agile methodology knowledge and understanding.

Responsibilities

• Independently apply security best practices to enhance and optimize systems, ensuring robust protection and efficiency, while beginning to understand and align security solutions with business objectives.
• Partner with peers and internal teams to drive security initiatives, contribute to cross-functional projects, and at times co-lead efforts to strengthen security posture.
• Analyze and resolve security challenges by adapting standard processes and exploring alternative approaches to address complex threats.
• Influence the quality, efficiency, and effectiveness of the team through informed decision-making, with a potential impact on other teams.
• Collaborate with other engineers to gather and incorporate feedback, driving continuous improvements in security processes.
• Onboarding Cloud accounts (such as Azure, AWS & GCP) - this includes access grant, enabling policies, configuring baselines, configuring agents (if applicable), verifying health status
• Administer CSPM solution - this includes managing user roles, audit logs, manage API access
• Discover cloud assets - this includes gaining visibility and manage cloud assets
• Manage Security policies and Benchmarks - this includes configuring CSPs specific security policies, industry specific compliance policies (such as PCI), benchmarks standards (such as CIS, NIST, etc.)
• Respond to alerts - this includes monitor, investigate and triage incidents based on actionable alerts
• Manage OS hardening - this includes administer operating system baseline and hardening
• Integration with 3rd party systems - this includes manage changes, requests on integration with other systems (such as ITSM and CI/CD Tools)
• Remediation guidance - this includes providing recommendations to the stakeholders to fix the potential threats, applying configurations on the systems to maintain IT security regulatory compliance and standards
• Manage reports - this includes providing reports to the business and relevant stakeholders

Benefits

• flexible work environment
• employee shares options
• health and life insurance