Cloud Security Specialist

We are seeking a Cloud Security Specialist to design, implement, and manage comprehensive cloud security programs across multi-cloud environments, focusing on cloud-native security tools, container security, Infrastructure as Code (IaC) security, and Cloud Security Posture Management (CSPM) to protect cloud workloads and data.Key ResponsibilitiesCloud-Native Security Implementation: Deploy and configure cloud security services (AWS Security Hub, Azure Security Center, Google Cloud Security Command Center)Implement identity and access management (IAM) policies and zero-trust architectures across cloud platformsConfigure cloud-native monitoring and logging solutions (CloudTrail, Azure Monitor, Google Cloud Logging)Manage encryption strategies for data at rest and in transit using cloud-native key management servicesImplement network security controls including VPCs, security groups, and cloud firewallsSecure containerized environments using Docker security best practices and image scanning toolsImplement Kubernetes security policies, network policies, and Pod Security StandardsDeploy container security platforms (Twistlock, Aqua Security, Sysdig) for runtime protectionConfigure admission controllers, service mesh security, and secrets management in KubernetesConduct container vulnerability assessments and implement secure container registry managementInfrastructure as Code SecurityImplement security scanning for IaC templates (Terraform, CloudFormation, ARM templates)Develop secure IaC policies and compliance checks using tools like Checkov, Terrascan, and SnykConfigure automated security testing in CI/CD pipelines for infrastructure deploymentsEstablish IaC governance frameworks and security baseline configurationsImplement drift detection and compliance monitoring for deployed infrastructureCloud Security Posture ManagementDeploy and manage CSPM solutions (Prisma Cloud, CloudGuard, Microsoft Defender for Cloud)Configure continuous compliance monitoring and automated remediation workflowsConduct cloud security assessments and risk analysis across multi-cloud environmentsImplement security benchmarks (CIS, NIST) and regulatory compliance frameworksGenerate security posture reports and metrics for executive leadershipRequired QualificationsTechnical Skills6+ years experience in cloud security across AWS, Azure, or Google Cloud PlatformExpert knowledge of container security, Docker hardening, and Kubernetes security architectureStrong experience with IaC security tools and secure infrastructure deployment practicesProficiency with CSPM platforms and cloud security monitoring solutionsUnderstanding of DevSecOps practices and security integration in CI/CD pipelinesKnowledge of cloud networking, encryption, and identity management principlesSecurity SkillsExperience with threat modeling for cloud architectures and container environmentsStrong understanding of cloud compliance frameworks (SOC 2, ISO 27001, FedRAMP)Knowledge of security automation and infrastructure security orchestrationExperience with penetration testing and vulnerability assessment in cloud environmentsPreferred QualificationsBachelor's degree in Cybersecurity, Computer Science, or related fieldCloud security certifications (AWS Security Specialty, Azure Security Engineer, Google Cloud Security Engineer)Container security certifications (CKS - Certified Kubernetes Security Specialist)Experience with service mesh security (Istio, Linkerd) and microservices security patternsBackground in cloud architecture and multi-cloud security strategy #J-18808-Ljbffr