Cloud Security Specialist

Key Responsibilities:

• Develop, implement, and maintain cloud security strategies, policies, and standards across the organization.
• Integrate security best practices into multi-cloud and hybrid environments (e.g., AWS, Azure, GCP).
• Monitor cloud environments for security threats, vulnerabilities, and breaches.
• Respond to security incidents by identifying root causes, mitigating risks, and coordinating corrective measures.
• Collaborate with the Incident Response team to analyze cloud-specific threats and resolve issues promptly.
• Conduct risk assessments for cloud platforms and services to identify and mitigate potential security threats.
• Ensure compliance with industry standards, regulations, and frameworks (e.g., ISO 27001, SOC 2, NIST, CIS benchmarks).
• Provide security guidance to ensure adherence to organizational security policies.
• Implement least privilege principles and ensure secure authentication and authorization mechanisms.
• Assist in securing cloud infrastructure services, including storage, compute, containers, and networks.
• Assist in supporting cloud security log monitoring architecture, design and implementation activities
• Develop and deploy automated security solutions for continuous monitoring, threat detection, and configuration management.
• Perform regular audits to ensure effective use of security tools and technologies.
• Implement remediations and proactive measures to address vulnerabilities and misconfigurations.
• Collaborate with cross-functional teams (e.g., DevOps, IT, compliance) to embed security into cloud projects and initiatives.
• Educate staff and stakeholders on cloud security risks, technologies, and best practices.
• Document cloud security policies, processes, and incidents.
• Generate reports for stakeholders, summarizing cloud security posture, risks, and improvements.
• Stay up-to-date with evolving cloud security trends, technologies, and threats.
• Provide recommendations to enhance the overall cloud security posture and align with organizational goals.

Suggested Skills

• Financial industry experience
• Knowledge of Cloud/Azure best security practices, DLP and how to configure best practices for data protection and how to discover sensitive data/PII and preform security assessments on cloud environments
• Experience with cloud provider and using security tools and techniques.
• Knowledge of cloud services and their attack surface.
• Related industry certifications (Sec+, CTIA, CISSP)

Qualifications

• Bachelor's Degree in Computer Science, Cybersecurity, or similar work experience in a related field
• Cloud security experience
• 2-3 years of cyber security experience
• Constant learner
• Has experience in at least one of the main cloud providers (AWS, Azure, Google)