sme -siem (so1)

Job Description

:

Job Description – Cloud Security Specialist

Role Overview

We are seeking an experienced Cloud Security Specialist to strengthen our multi-cloud security posture and ensure alignment with industry-leading practices. The role involves managing and monitoring cloud security controls, remediating misconfigurations, implementing preventive measures, and collaborating with internal teams, vendors, and stakeholders to deliver a secure and compliant cloud environment.

Key Responsibilities

• End-to-End Cloud Security: Implement and manage security controls across multi-cloud infrastructures (AWS, Azure, GCP, etc.), ensuring compliance with organizational security standards.
• Security Posture Management:
• Monitor, analyze, and manage Cloud Security Posture (CSPM) across environments.
• Ensure resources (new and existing) adhere to security best practices to prevent misconfigurations.
• Identify, triage, and support remediation of security misconfigurations; validate fixes with relevant teams.
• Cloud Workload Protection & Platforms: Implement and manage CWPP, CNAPP, CSPM, and CIEM solutions.
• Incident Response: Support cloud security-related incident detection, triage, containment, and remediation.
• Network & Infrastructure Security:
• Deploy and manage Network Security Groups (NSGs), Application Security Groups (ASGs), cloud firewalls.
• Implement and maintain Azure Front Door, Web Application Firewall (WAF), and DDoS protection mechanisms to safeguard applications from attacks.
• Auditing & Reporting:
• Conduct regular security audits and identity monitoring.
• Generate dashboards and reports such as:
  • Cloud Posture Management (CSPM findings, misconfigurations)
  • Cloud Identity & Access Audit (excessive permissions, stale accounts)
  • Cloud Security Incidents Summary Report
• Documentation & Knowledge Management: Maintain up-to-date documentation of security processes, procedures, and best practices. Create and update a knowledge base of recurring scenarios and resolutions.
• Vendor & Internal Coordination: Collaborate with external vendors, OEMs, and internal SMEs to resolve security findings, break-fix support, and complex issues.
• Threat & Vulnerability Management: Identify and support remediation of malicious activities, intrusions, and vulnerabilities.
• OS & Application Hardening: Work with infra support teams on operating system hardening and applying associated security controls.
• Policy & Governance: Implement, modify, and maintain security policies. Provide support for Incident, Problem, and Change Management processes.
• Identity & Access Management (IAM): Provide support for cloud-related SSO integration for remote users.
• Continuous Improvement: Regularly provide recommendations to strengthen cloud security posture and reduce risk exposure.

Required Skills & Experience

• Proven experience in cloud security across AWS, Azure, GCP (multi-cloud).
• Hands-on expertise with CSPM, CWPP, CNAPP, CIEM solutions.
• Strong understanding of cloud-native security services (IAM, NSG, ASG, WAF, Azure Front Door, DDoS protection, Cloud Firewalls, KMS, etc.).
• Experience in incident response, threat detection, and remediation within cloud environments.
• Knowledge of compliance frameworks (ISO 27001, NIST, CIS Benchmarks, GDPR, etc.).
• Familiarity with identity monitoring, auditing, and reporting tools.
• Strong coordination and stakeholder management skills.
• Ability to create technical documentation, reports, and dashboards.

Preferred Qualifications

• Certifications: Azure Security Engineer (AZ-500), AWS Security Specialty, GCP Professional Cloud Security Engineer, CISSP, CCSP, or equivalent.
• Experience with SIEM/SOAR integration for cloud workloads.
• Knowledge of DevSecOps practices, cloud automation, and IaC security (Terraform, ARM, CloudFormation).

Location

:

India - Bengaluru

Created On

:

14-Aug-2025