Cloud Platform Security Engineer - Senior Manager

Job Description

As a Cloud Platform Security Engineer, you will be part of a diverse team and primarily be responsible for the following:

• The position is a highly technical role that will participate in the design and delivery of Azure infrastructure deployment and provide guidance and real-world mitigation steps to identify information risks
• Evaluate and implement Azure cloud security tools such as Azure Log Analytics, Azure Security Center, Azure Information Protection, Azure ATP, and Defender ATP
• Create appropriate policies for operationalizing security tools, implementing standards for cloud security, and performing periodic audits to ensure that standards are maintained
• Applying knowledge and/or skills of scripting, cloud technologies and computer forensics, security posture assessment, and requirements-based hardening in connection with the responsibilities above
• Work with product teams to securely modernize applications with a focus on Secure DevOps
• Implement security-in-depth for cloud application and data platforms such as Kubernetes, Container Registries, Database Platforms, API Management, and other services
• Apply knowledge about Identity and Access Management in the cloud, including SAML, Open ID Connect, Azure AD Conditional Access Policies, and B2B/B2C capabilities
• Prepare security engineering diagrams and keep existing security diagrams up to date
• Deploy, implement and maintain security technologies and tools, such as SIEM, IDS/IPS, endpoint detection and response (EDR), and Cyber Threat Intelligence (CTI) tools
• Design and implement solutions for data protection using best-practices to encrypt data at rest, data in motion, and data in use
• A thorough understanding of networking, security architectures, and experience deploying complex enterprise solutions in public clouds will be valuable experience
• Ability to assist, contribute & lead when required with prototyping various platform specific security solutions & technologies
• Hands on experience of codifying secure cloud platform provisioning activities using tools such as Terraform, Azure Policy, PowerShell DSC and InSpec
• Hand on governance audit/enforcements using Azure policies
• Ability to apply global research on next gen technologies, frameworks, solutions & best practices to fulfill various project & platform specific requirements
• Develop assets to help teams gain better visibility into the security posture of resources deployed to the cloud, including custom policies, scripts, and Log Analytics queries / workboooks
• Balance pragmatism with vision; continually assess the security posture of cloud applications and deliver improvements to the team s tools, processes and codebase
• Automate detection and remediation of security problems with native cloud capabilities
• Contribute and drive knowledge sharing, documentation & collaboration
• Be a team player, accountable, self-motivated and delivery focused engineer

• 8 to 12 years of progressively responsible professional software engineering experience preferably in a financial services product delivery setting.
• Hands on working experience designing/implementing secure platform
• Bachelors degree or equivalent work experience
• 6 years of hands-on experience in securing large complex networks, preferably in an Azure cloud environment
• Azure Security Engineer Associate certification required Industry-standard security certifications such as Azure Administrator Associate, Azure Solutions Architect Expert, CCNA/CCNP Security, and CompTIA Cybersecurity Analyst
• Understanding of Azure networking and security infrastructure to support Azure IaaS and PaaS solutions
• Experience with Next Gen firewalls
• Hands-on experience in the designing, deployment, and support of security appliances, software, and other SaaS-based security offerings in a public cloud
• Experience developing or integrating automated security tools
• Superb understanding of cloud-based virtual network environments
• Experience in supporting Linux-based infrastructure
• Strong interpersonal and communication skills
• Comfortable in global working environment
• Vast understanding of change management and security audit processes
• Experience documenting technology standards, operational procedures, and other technical documentation
• Excellent oral and written communication skills
• Ability to interact with technical staff across multiple systems and disciplines
• High degree of self-sufficiency, ownership, and pride of deliverables

Keyskills :
firewallnetworkingcustomer relationsidspenetration testingcloud securitysecurity auditsecurity toolschange managementaccess managementcloud applicationscomputer forensicssecurity appliances