Cloud Security Operations Expert – Azure & AWS
Experience Level: 6-9 years
Detailed JD:
MAJOR RESPONSIBILITIES:
- Ensure security components are managed and compliance is maintained throughout their lifecycle i.e. protection profiles, security groups, implementation of all resources following security guideline
- Audit, review and monitor Security: encryption, VPC Flow logs, security groups, routing tables, ACL's, Elastic IPs
- Assess that operational security is developed through the operating model design and ensure controls are developed to ensure compliance to security controls
- Vulnerabilities assessment and remediation plan
- Responsible for the creation of the security dashboard and reports
- Security Incident Management: incident response and SPOC for SOC
- Coordination of Penetration Testing activities including managing Amazon/Azure Requests
- Perform risk assessments of new Public Cloud capabilities that we want to operationalize and support creation of guides for application managers who want to use the service
- Register, track and update Public Cloud risks, gaps and remediation's in the IT360 tool
- Perform GxP assessment of AWS and Azure cloud Platform on Yearly basis
- Responsible for AWS Config Rules: Define monitoring, change, governance and compliance rules to implement with input from IAM Manager and Security Manager
- Make sure the alerts are checked within Azure security center
- Make sure services are implemented as per Design specifications
- Firewall change form approvals for Azure and AWS cloud changes
- Review/ Approval of IAM polices
BASIC QUALIFICATIONS:
- More than 5 years of Cloud Security Operations experience in global Cloud environments; delivering infrastructure and Platform services across geographic and business boundaries
- AWS/Azure Cloud Architecture experience – responsible for influencing the design of complex public cloud Infrastructure solutions in view of the security design
- Experience in Cloud audit, review and monitor Security: encryption, VPC Flow logs, security groups, routing tables, ACL's, Elastic IPs
PRODUCT KNOWLEDGE:
- AWS/Azure Cloud Architect
- Security Certifications, CCSK/CCSP, CEH, ISO27001 LA , PCI-DSS, CISA/CISM
Location-Hyderabad