This role requires a strong background in cloud security operations, network security, and hands-on experience with cloud infrastructure from major providers like AWS, Google, Oracle, and Azure. The ideal candidate will be able to work in ambiguous, data-rich environments, synthesize actionable security insights, and effectively communicate with business partners.
Main Skills:
Azure Functions
Azure
Network Security
Job Description:Position: Cloud Security Operations Senior Engineer (Cloud SecOps Sr Engineer)
Cloud Security Operations (Cloud Sec Ops) is responsible for the operational governance of security operations and controls within the client's cloud infrastructure. This team oversees 24/7 monitoring of firewall policies, network port activities, cloud provider security policies, and scans for policy variations within the client landscape.
Key Responsibilities:
Framework Development: Collaborate with architects to develop frameworks for cloud environments, systems, and tools.
Security Standards Advocacy: Act as the voice of security standards and policy best practices across the client’s cloud space.
Policy and Guardrails Establishment: Work closely with security teams to establish policies and guardrails for the cloud environment and create the necessary campaigns to drive governance.
Tool and Metric Maturation: Enhance tools, metrics, and dashboards required to build security awareness and direct security campaigns.
Remediation Practices: Develop and own remediation best practices and create runbooks to support service owners, in partnership with the Cloud SecOps PM.
Proactive Monitoring: Conduct monthly business reviews to analyze security trends and proactively scan and alert on potential impacts.
Security Escalations: Handle security escalations and best practices within a SecOps field or organization.
Ambiguity Management: Work through data-rich environments to synthesize security stories and justifications for business partners.
Cross-Cloud Experience: Leverage security engineering experience across AWS, Google, Oracle, and Azure infrastructures.
Deliverables:
Security Awareness Material: Produce materials to enhance security awareness.
Automation and Mitigation: Develop automation mechanisms for detecting and mitigating non-compliant actions in the environment.
Business Review Reports: Deliver weekly/monthly security initiative business review reports and situational awareness (SitRep) reports as needed.
Proactive Security Guardrails: Manage and drive proactive security guardrails in partnership with the Manager of Cloud SecOps.
Technical Operationalization: Mature and scale the technical operationalization of cloud security.
Policy Communication: Advise and direct engineers on the rationale behind policies, assisting service teams in prioritizing time commitments and program needs.
Roadmap Development: Build roadmaps to scale for future phases.
Stakeholder Alignment: Ensure alignment and tracking on the Cloud SecOps security mission with peers, partners, and stakeholders.
Transparency Mechanisms: Build mechanisms to ensure operational transparency and direction with stakeholders.
Any graduate