Role Summary
We are seeking a Cloud Security Engineer with 5+ years of experience to design, implement, and maintain cloud security solutions that protect critical insurance systems and data. The role will work closely with cloud engineering, application teams, and information security to ensure secure cloud deployments and compliance with regulatory standards.
Key Responsibilities
- Design, implement, and optimize cloud security controls across AWS/Azure/GCP, including IAM, encryption, network security, WAF and security monitoring tools.
- Support secure deployment of cloud-native services and microservices, ensuring compliance with internal security policies and industry standards.
- Conduct risk assessments, threat modeling, and vulnerability analysis for cloud workloads.
- Collaborate with development and infrastructure teams to integrate security into CI/CD pipelines (DevSecOps).
- Respond to security alerts and incidents; coordinate with SOC and InfoSec functions.
- Participate in security architecture reviews and ensure alignment with cloud governance frameworks.
- Maintain documentation for cloud security standards, configurations, and best practices.
Qualifications
- Bachelor's degree in Computer Science, Information Security, or related field.
- 5+ years of experience in cloud security, information security, or cloud engineering roles.
- Hands-on experience with cloud security technologies (IAM, security groups, log management, SIEM/SOAR, WAF, encryption).
- Familiar with public cloud platforms (AWS/Azure/GCP) and cloud-native security services.
- Knowledge of relevant security compliance and frameworks (ISO 27001, NIST, CIS, local insurance regulations).
- Strong analytical, problem-solving, and communication skills.
Preferred / Desirable
- Certifications such as AWS Security Specialty, Azure Security Engineer, CISSP, CCSP.
- Experience with container security and orchestration (Kubernetes).
- Prior experience in BFSI/insurance or highly regulated environments.
