Team Lead – Cloud Security Specialist- Security Operations Centre
Head Cybersecurity Operations
Our Cyber Security Operation function works to continuously strengthen cyber security posture through research, threat simulations, threat hunting, and offensive security engagements.
The position of Cloud Security Specialist is responsible to support and develop Cloud security monitoring implementation(s). Primary day-to-day job duties involve designing solutions that improve overall cloud visibility for Incident Response operations, cybersecurity analysts and threat hunting personnel in multi-cloud environments. In support of these, the role will include developing advanced correlation rules, reports, and dashboards to detect emerging threats in Cloud environments.
Roles and Responsibilities
Responsible for the design and development of innovative security architectures for protecting data deployed in Cloud service providers.
Assess day-to-day monitoring of IT security systems by reviewing end customer security alerts and logs.
Assess how customer teams investigate security alerts and handle incident response.
Document security processes and procedures for end users and operations teams.
Collaborate with other team and Business Units in analysis, discovery, and containment of cyber security incidents.
Provide expertise and support in deployment of security measures and understand information security management.
Designing and implementing automated security processes and controls to increase operational effectiveness and to reduce manual processes.
Interfacing with infrastructure and other teams throughout the organization with the objective to provide high quality and low friction, security operations services and compliance with internal and regulatory security standards
Provide support as On-Call personal during security incident
Responsible for working in a 24/7 environment including night shifts and the shifts are decided based on the business requirement.
Preparing and documenting standard operating procedures.
Act as part of the incident response team providing troubleshooting, analysis and forensics when needed.
Review solutions, recommendations, and risk documentations to minimize risk of implementation of recommended products, applications, and infrastructure.
Should be comfortable to be part of 24*7 SOC services.
Bachelor’s degree relevant to Information Technology, Computer Science/Engineering (or equivalent).
Advanced certification desirable CISP, CCSP, AWS Certified Solution Architect – Associate, Google Cloud Professional Security Engineer, Microsoft Certified: Azure Security Engineer Associate.
At least 3+ years of experience in Cloud Security
Experience on Prisma cloud, CSPM is required.
Experience around End-to-End cloud security design and Architecture experience.
Must have experience around Design of security controls, product best fit analysis to ensure end to end security covering different faucets of architecture e.g., Layered security, Zoning, Integration aspects, API, Endpoint security, Data security, Compliance and regulations, Threat intelligence, Threat exposure &incident management aspects for the cloud deployments for the AWS/Azure/GCP environment.
High level experience on Infrastructure Security Products design and deployment experience for cloud environments like (Security Groups, NACL, WAF, Inspector, cloud front, cloud watch, RDS, Shield, Cloud Config, Key management, IAM etc. is a must.
Hands-on experience in the technical deployment, configuration, integration, support, and administration of security technologies (e.g., Firewalls, IPS, DDoS, SIEM, WAF, Endpoint etc.) for cloud environment is must.
Knowledge about Containers Security/Dockers/Kubernetes/Micro services.
Experience around creating and audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements.
Must have basic knowledge and experience around ITIL or Key process-oriented domains like incident management, configuration management, change management, problem management.