Cloud Cyber Defense

Job Description We are a leading global software company dedicated to the world of computer aided design, 3D modeling and simulation - helping innovative global manufacturers design better products, faster With the resources of a large company, and the energy of a software start-up, we have fun together while creating a world class software portfolio. Our culture encourages creativity, welcomes fresh thinking, and focuses on growth, so our people, our business, and our customers can achieve their full potential. We are looking for an experienced Cloud Cyber Defense & Incident Response Analyst to safeguard our cloud environments against evolving cyber threats. This role blends proactive threat hunting with fast, effective incident response to ensure the security, resilience, and integrity of our cloud infrastructure. The ideal candidate brings deep expertise in cloud security, threat intelligence, digital forensics, and modern incident response practices. This position follows a rotating shift schedule either 07:0015:00 IST or 00:0008:00 IST Key Responsibilities: - Lead end-to-end incident handling: detection, triage, containment, eradication, and recovery. - Conduct forensic analysis of cloud security incidents to determine root causes and impact. - Create and maintain incident response playbooks tailored to cloud-based threats. - (Bonus) Bring experience in incident management processes. - Continuously monitor cloud platforms for anomalies and suspicious activities. - Leverage SIEM tools, threat intel feeds, and analytics to detect potential intrusions. - Perform log and network traffic analysis to identify malicious behaviors. - Translate threat intelligence into actionable security improvements. - Track emerging cloud-focused attack techniques and recommend defenses. - Partner with cloud engineers and security teams to integrate best practices. - Use cloud-native security tools and automation to enhance detection and response. - Increase operational efficiency with SOAR platforms. - Maintain and refine alerting and monitoring rules. - Align security operations with standards such as ISO 27001 and SOC 2. - Prepare detailed incident reports and recommend remediation steps. - Support security audits and assessments of cloud environments. Requirements: - Bachelors degree in Cybersecurity, Information Security, or related field or equivalent experience. - Proven Experience in cybersecurity, cloud security, or incident response. - Strong knowledge of AWS and Azure security features. - Experience with SIEM, IDS/IPS, and EDR solutions. - Scripting and automation skills (Python, PowerShell). - Familiarity with MITRE ATT&CK framework and modern defense strategies. - Proven experience in cloud-based incident response and digital forensics. - Preferred Certifications: AWS Certified Security Specialty, or Microsoft Certified: Security, Compliance, and Identity Fundamentals; GIAC Certified Incident Handler (GCIH) or GIAC Cloud Forensics Responder (GCFR); CISSP or CCSP. Working at Siemens Digital Industries Software Why us Working at Siemens Digital Industries Software means flexibility - Choosing between working at home and the office at other times is the norm here. We offer great benefits and rewards, as you'd expect from a world leader in industrial software. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. Transform the everyday