Cloud Security Engineer - DevSecOps

Description :

- Design and implement cloud security architectures for AWS environments.

- Deploy, configure, and manage Prisma Cloud Security (CSPM, CWPP, CIEM, IaC Security) for AWS workloads.

- Define and enforce cloud security policies, guardrails, and best practices.

- Conduct cloud risk assessments, threat modeling, and gap analysis.

- Integrate Prisma Cloud with SIEM, DevSecOps pipelines, and monitoring tools.

- Monitor security alerts, perform incident response, and support remediation efforts.

- Drive compliance initiatives (ISO 27001, SOC2, PCI DSS, HIPAA, GDPR, etc.) in AWS.

- Provide technical expertise in IAM, network security, container security (EKS/ECS), and serverless security.

- Work with DevOps/CloudOps teams to ensure secure CI/CD pipelines and IaC templates

(Terraform/CloudFormation).

- Document architecture, policies, and procedures to support audits and certifications.

Required Skills & Qualifications :

- Hands-on expertise in Prisma Cloud (CSPM, CWPP, CIEM, IaC Security modules).

- Strong knowledge of AWS services (EC2, S3, RDS, Lambda, EKS/ECS, VPC, IAM, KMS, GuardDuty, Security Hub, CloudTrail, etc.

- Experience with DevSecOps and integrating security into CI/CD pipelines.

- Proficiency in Terraform, CloudFormation, or Ansible for infrastructure security automation.

- Familiarity with container and Kubernetes security.

- Strong understanding of cloud compliance frameworks (NIST, CIS Benchmarks, ISO, PCI DSS, HIPAA).

- Knowledge of SIEM tools (Splunk, ELK, etc.) and incident response processes.

- Excellent troubleshooting, documentation, and communication skills.