Cloud Security Specialist

Job Description

• Implement and maintain security including Cloud Security Solutions from AWS, next generation firewalls, application firewall/DDoS, container security and the Web Application Firewall (WAF).
   
• Configure, implement, and support security software/systems that will help ensure compliance in AWS cloud environments. 
   
• Update security tools for logging/monitoring and increasing coverage of existing tools.
   
• Conducting security assessments and audits to locate and address vulnerabilities
   
• Create and maintain data security documentation, policies and procedures.
   
• Compliance knowledge
   
• Ensure compliance with relevant laws, regulations and industry standards pertaining to cyber defense and incident response.
   
• Collaborate with legal, compliance, and risk management teams to address cybersecurity and data protection requirements
   
• Develop metrics and key performance indicators (KPIs) to measure and report on the effectiveness of cyber defense operations
   

Requirements

• Minimum Degree in Computer Science, Engineering or equivalent
   
• Preferably with one or more of the related certification in the areas of Cyber Security/Information Security – CISSP, CEH, CISM, Comptia CYSA+, GIAC GCFA, GCTI, GCIH and GREM or other relevant certifications
   
• Solutions Architect - Associate or Professional, AWS Security Speciality
   
• Minimum of 4 years experience in implementation and operationalizing cloud security solutions/infrastructure
   
• Manage and lead the Threat Prevention teams of Perimeter & Network Security, Server, Endpoint & Mobile Security, Cloud Security and Data Loss / Leakage Prevention (DLP)
   
• Oversee plan, design, implementation, testing and operation of the cyber security processes and systems
   
• Work closely with the Head of Cyber Security to build and mature the Threat Prevention Strategy including tooling and processes
   
• Recognize, adopt and instill best practices in security engineering and operations through the threat prevention controls
   
• Manage team of cybersecurity professionals responsible for monitoring, detecting, and responding to cybersecurity threats
   
• Oversee the day-to-day operations of cyber defense systems, such as perimeter and network security, intrusion detection systems (IDS), endpoint detection and response (EDR/MDR) tools, and/or data loss prevention (DLP)
   
• Ensure effective incident response processes and procedures are in place, including incident triage, containment, investigation, and remediation
   
• Coordinate with internal teams and external partners for threat intelligence sharing and collaboration on incident response activities
   
• Monitor and analyze security event logs, network traffic, and system behavior for indicators of potential security incidents or breaches
   
• Implement and manage security monitoring tools and technologies to enhance threat detection capabilities