Job Title

Designation - Sr. Lead - Cloud SecurityExperience - 8 - 12 yearsLocation - Remote(India)Essential skills:Cloud security framework; Strong scripting skills with PowerShell and experience managing Linux systems.Solid understanding of version control tools, particularly Git.Experience with cloud platforms, including AWS, Azure and GCP.Problem solving and troubleshooting skills.Desired skills:Good communication skillsExperience with Docker and container orchestration tools.Knowledge of microservices architecture and related best practices.Summary:Resource must exhibit strong trouble shooting and problem-solving skills along with knowledge of cloud architecture, security features, and cloud platforms such as AWS. Resource must be well-versed with incident management; must have information security auditing experience.Roles & Responsibilities:Security Integration in DevOps Pipelines:● Embed security tools and practices in CI/CD pipelines to detectand mitigate vulnerabilities.● Implement static and dynamic code analysis, vulnerabilityscanning, and container security checks.Infrastructure Security:● Design and implement secure infrastructure leveraging cloudservices and Infrastructure as Code (IaC).● Ensure configuration management for servers and cloudenvironments meets security standards.Automation and Monitoring:● Automate security testing and monitoring processes to maintaincompliance and reduce manual intervention.● Develop and maintain monitoring systems to detect anomaliesand security breaches.Collaboration and Training:● Collaborate with cross-functional teams to address securityconcerns during software development and deployment.● Provide training and awareness on secure coding practices andDevSecOps tools.Incident Management:● Respond to security incidents, conduct root cause analysis, andimplement preventive measures.● Maintain and test incident response plans.Compliance and Governance:● Ensure systems adhere to regulatory requirements and industrybest practices.● Conduct periodic security audits and assessments to maintaincompliance.● Considering dependencies, relationships, and integration pointsto ensure proper solution integration with other systems whenapplicable● Responsibility for compliance with applicable industry standards,corporate policies and procedures● Maintaining high-level of client satisfaction● Leveraging knowledge and experience of technicalimplementation related to IT Infrastructure Library (ITIL)processes, workflow customization, ticketing, processautomation, report development, dashboard creation, andsystem configurationsEssential Experience:● Solid experience in software development and operations,with a focus on security.● Strong knowledge of DevOps principles and practices,including CI/CD pipelines, version control systems, andautomated testing frameworks.● Proficiency in scripting and automation using languages suchas Python, Ruby, or PowerShell.● Familiarity with cloud platforms and services (e.g., AWS,Azure, GCP) and their security considerations.● Experience with containerization technologies (e.g., Docker,Kubernetes) and associated security practices.● Knowledge of security frameworks and standards (e.g.,OWASP, NIST, ISO 27001) and their application in softwaredevelopment.● Understanding of secure coding practices and commonvulnerabilities (e.g., OWASP Top 10) and their mitigationtechniques.● Strong analytical and problem-solving skills, with the abilityto identify and address security risks and incidentseffectively.Desired Experience:● Excellent communication and collaboration skills, with theability to work effectively with cross-functional teams andstakeholders.● Knowledge of microservices architecture and related bestpracticesCertifications, if any: AWS Security, CEH, ISO 27001