Core responsibilities include: 

• Cloud Security Controls: Design and implement security controls across AWS, Azure environments.  

• Continuously enhance our cloud security posture management (CSPM) program to identify and remediate risks in configurations and policies.  

• Ensure SOC 2 cloud security controls are always executed and auditable. 

• Container & Kubernetes Security: Oversee security for containerized applications and Kubernetes clusters. Establish best practices for container image security, pod security policies, and cluster network segmentation to protect our microservices. 

Overall, You must: 

• Ensure cloud systems and solutions are secure by design and champion a secure guardrails approach—automating security checks and educating teams to build secure systems from the ground up. 

• Conduct continuous vulnerability and compliance validation to ensure ongoing adherence to security policies and regulations. 

• Monitor cloud environments for security incidents and ensuring rapid response through automated mechanisms. 

• Serve as subject matter expert on cloud technologies and security solutions 

• Perform technical security design, architecture, change and/or configuration audits/reviews on our hosting environments including Azure & AWS, servers, network devices, endpoints, and security technologies deployed (CNAPP, MDM, WAF, DDoS, etc.) 

• Collaborate with cross-functional teams, including developers, cloud engineers, architects, and operations, to embed security in critical initiatives including API security. 
   

• Foster a culture of continuous improvement, innovation, and knowledge sharing across the organization and staying updated on the latest cloud security threats and advancements. 

Your profile:  

• Bachelor’s degree in computer science, Information Security, or related professional experience. 

• 6+ years’ experience in cloud security 

• 3+ years hand-on experience working with containerized environments 

• Excellent understanding of Azure, AWS, k8s  

• Experience working with cloud security posture management tooling 

• Hands-on experience on threat modeling and security architecture reviews. 

• Hands-on experience of working with compliance requirements and turning them to technical controls: Ability to implement and manage security controls in cloud environments 

• Knowledge of cloud security best practices and industry standards 

• Strong analytical and problem-solving skills 

• Ability to think critically and make data-driven decisions 

• Excellent documentation skills, including the creation of procedures, process documentation, and user documentation  

• Certifications: Relevant certifications such as Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), or AWS Certified Security – Specialty are preferred. 

• Technical Skills: Proficiency in cloud platforms (e.g., AWS, Azure), security tools, and technologies (e.g., firewalls, intrusion detection systems, encryption). 

• Knowledge: Strong understanding of cloud security principles, risk management, and compliance frameworks. 

Soft Skills:  

• The ability to collaborate effectively with cross-functional teams. 

• Keen attention to detail and a vigilant, solutions-oriented mindset 

• Excellent organizational skills and the ability to work under pressure on multiple projects, balance competing priorities, and meet deadlines both when working alone and with others.   

• Self-motivated and able to complete projects with minimal supervision.  

• Ability to rapidly evaluate, research, learn, and apply advanced and emerging data security principles, theories, and concepts.  

• Positive attitude and outstanding, proactive problem-identification and problem-solving skills.   

• Strong interpersonal and project management skills, and the ability to collaborate with colleagues across the enterprise and to work effectively in a matrixed, geographically distributed organization.