Senior Cloud Security Engineer

5+ years of hands-on experience in security engineering with a focus on cloud (AWS, Azure, GCP). Deep understanding of cloud architecture and services. Proven experience implementing security controls in a production cloud environment. Strong experience securing containerized applications and Kubernetes clusters. Familiarity with tools and practices for container security. Proficiency in Infrastructure-as-Code (Terraform, CloudFormation) and scripting (Python, Go, Bash). Ability to build tools or integrations to reduce manual effort. Hands-on experience with Cloud Security Posture Management (CSPM) solutions. Ability to identify and remediate misconfigurations in cloud setups. In-depth understanding of cloud IAM and access control mechanisms. Experience designing role-based access schemes and managing federated identities. Experience with vulnerability scanning tools (e.g., Tenable, Qualys). Knowledge of common cloud threats and vulnerabilities. Track record of securing real cloud deployments and solving security incidents.

Implement cloud security best practices across AWS, Azure, and GCP. Harden cloud infrastructure using native security features. Secure containerized applications and Kubernetes (EKS, AKS, GKE). Develop and maintain automation scripts and Infrastructure-as-Code (Terraform, CloudFormation). Automate security tasks like provisioning secure configurations and compliance checks. Enhance cloud security monitoring with CSPM tools and cloud-native monitoring. Identify and remediate potential vulnerabilities and misconfigurations. Assist in investigating security alerts and incidents. Improve cloud IAM configurations to enforce least-privilege access. Manage roles, policies, and access keys across cloud accounts. Implement solutions like Teleport to strengthen access controls. Scan cloud assets and container images using vulnerability scanning tools. Serve as a security subject matter expert for cloud projects. Advise on secure architecture and coding practices to development teams. Contribute to threat modeling and review new features for security risks.