RESPONSIBILITIES:
Craft and implement cutting-edge cloud security controls and technologies.
Lead design, implementation, and integration of various cloud security tools.
Monitor security events and perform triage analysis.
Identify new technologies and security tools and lead operationalization solutions from POC to Production.
Help build secure infrastructure, tools, and services to improve delivery.
Work closely with DevOps, Engineering and product teams to define security strategy and controls and execute on it.
Collaborate with R&D teams on designing and the implementation of new features.
REQUIREMENTS:
Strong technical skills and proven industry experience (10+ years) with DevOps methodologies, tools and technologies.
Extensive experience in designing and building a high security company infrastructure. Requires deep knowledge and proven hands-on experience in various security controls.
Deep understanding of cloud security, best practices and industry trends and challenges.
Ability to identify common security risks, formulate and execute security strategies.
Experience with market-leading security tools and providers.
Scripting & development skills. Leverage your programming expertise to develop automation solutions.
Extensive knowledge of Internet protocols, architectures, and security design principles.
Strong Security tooling, processes expertise, including KMS, GuardDuty, Cloudtrail, SSO, as well as with tools such as Snyk and Palo Alto suite (Cortex XDR, Prisma Cloud).
Experience with cloud computing technologies, IaC, preferably AWS and TF.
Experience in triaging security alerts and executing incident response.
ADVANTAGE:
Have one or more security-related certifications, such as CKS, CISSP, CEH, CISA, CISM, SECURITY+ or similar- advantage.
Experience in Compliance Requirements (e.g. SOC2, ISO27001, PCI, etc.)- advantage.
Proven ability of gathering and maintaining evidence for security and compliance- advantage.
Great communication skills.
Self-motivation with the drive to keep moving things forward.
