Description

Role Overview: The Lead Cloud Security Engineer position is pivotal in ensuring the security of cloud environments, specifically focusing on AWS. This role involves designing, implementing, and maintaining robust security solutions aligned with industry best practices and compliance standards. Collaboration across teams and proactive risk assessment are essential to protect company and customer data effectively.

 

Key Responsibilities:

Architectural Design and Implementation:

  • Design and implement cloud security architectures and policies tailored for AWS environments.
  • Develop and enforce data access, retention, and deletion policies.
  • Implement data protection and encryption strategies across cloud assets.

Risk Assessment and Management:

  • Collaborate with cross-functional teams to assess risks and develop countermeasures.
  • Monitor cloud security events, analyze data loss incidents, and provide remediation guidance.

Compliance and Auditing:

  • Conduct cloud security assessments and audits, offering recommendations for improvements.
  • Ensure compliance with global data protection regulations and standards.

Technology Evaluation and Integration:

  • Research emerging cloud security trends and technologies, advising on their adoption for data protection.
  • Provide technical guidance to a team of Data Protection engineers.

Collaboration and Governance:

  • Partner with cloud platform teams (Azure, AWS, OCI, GCP) to design and implement security controls.
  • Establish and maintain security standards and baselines to ensure governance and compliance in DevSecOps environments.

 

Skills and Qualifications Required:

  • Bachelor's degree in Computer Science, Information Security, or related field.
  • Minimum of 5 years' experience in cloud security, particularly in AWS.
  • Proficiency in data protection strategies for cloud storage, databases, and applications.
  • Knowledge of AWS-specific data protection tools and services.
  • Understanding of global data protection laws and regulations.

 

Technical Expertise:

  • Strong knowledge of AWS security services (IAM, KMS, VPC, S3, CloudTrail, etc.).
  • Familiarity with cloud security standards (NIST, ISO, CSA) and encryption technologies (AES, RSA, PKI, SSL/TLS).
  • Experience with cloud security threats, vulnerabilities, and mitigation tools (AWS Inspector, GuardDuty, WAF, etc.).
  • Hands-on experience with Security Information and Event Management (SIEM) systems and Data Lakes

Education

Bachelor's Degree