Key Responsibilities :

1. CSPM Monitoring & Analysis :

- Review and triage CSPM alerts and findings from tools like Defender for Cloud, Security Hub, Prisma, Wiz, or similar.

- Prioritize misconfigurations based on severity, exploitability, and business impact.

- Identify patterns, recurring issues, and posture drift.

2. Remediation Coordination :

- Work with cloud admins, infra teams, and application owners to ensure prompt remediation.

- Provide correct fix guidance based on best practices and CIS/NIST/ISO controls.

- Track remediation progress, SLAs, and exceptions.

3. Governance & Compliance :

- Map CSPM findings to frameworks such as CIS Benchmarks, ISO 27001, NIST CSF, and regulatory obligations

- Maintain evidence and documentation for internal/external audits.

- Maintain a risk register for critical findings.

4. Policy Enforcement & Hardening :

- Recommend improvements to cloud security baselines.

- Ensure workloads follow secure configuration standards (encryption, identity hygiene, network segmentation, logging, etc.).

- Review architecture or deployment requests for posture impact.

5. Reporting & Stakeholder Communication :

- Prepare weekly/monthly posture reports and risk dashboards.

- Present posture trends, risk exposure, and remediation progress.

- Conduct awareness sessions for teams on secure configurations.

Required Qualifications :

- 3-6 years of experience in cloud security, cyber risk, or security operations.

- Strong knowledge of Azure concepts such as IAM, networking, encryption, logging, storage hardening, and identity security.

- Hands-on experience with at least one CSPM tool (Defender for Cloud, Security Hub, Prisma, Wiz, etc.).

- Understanding of cloud security controls (CIS, NIST, ISO 27001, SOC 2).

- Ability to analyze misconfigurations, interpret alerts, and provide clear remediation guidance.

- Strong communication and stakeholder management skills.