Job Description
Key Responsibilities:
Serve as the technical SME for cloud security, advising project teams and stakeholders on cloud security strategy, architecture, and implementation.
Design, implement, and review secure cloud architectures for client projects.
Lead cloud security initiatives, including IAM, network security, encryption, data protection, and threat mitigation.
Support DevSecOps practices, integrating security into CI/CD pipelines and deployment workflows.
Collaborate with enterprise teams to ensure compliance with security frameworks and regulatory requirements (ISO 27001, NIST, SOC 2, GDPR).
Conduct risk assessments, security audits, and vulnerability reviews for cloud security environments.
Provide mentorship and guidance to project teams and other cloud engineers.
Stay updated with the latest cloud platform security tools, services, and best practices.
Requirements:
Hands-on experience with Cloud Platform and cloud-native security controls.
Minimum 5-8 years working experience in Cloud Security consulting is preferred
Expertise in cloud security architecture, IAM, network security, data encryption, and cloud monitoring.
Strong understanding of security frameworks, compliance standards, and governance.
Experience with DevSecOps, CI/CD security, and secure deployment pipelines.
Proven experience as a technical SME, consultant, or lead engineer in cloud security projects.
Excellent communication skills, able to translate complex security concepts to non-technical stakeholders.
Preferred / Nice-to-Have:
Certifications: GCP Professional Cloud Security Engineer, CISSP, CCSP, Security+
Familiarity with Security Command Center, Cloud Armor, VPC Service Controls, KMS, and Cloud IAM.
Experience with multi-cloud environments and hybrid cloud security strategies.
Knowledge of automation and scripting for security operations (Python, Terraform, etc.).
Education:
Bachelor's or Master's degree in Computer Science, Information Security, or related field.
