Cloud Security Specialist - AWS Platform

Role Overview :

We are seeking a skilled AWS Security Expert to manage and safeguard our cloud architecture from potential threats & vulnerabilities. The ideal candidate will also assist with day-to-day application deployments and ensuring secure and efficient workflows. This role requires a proactive professional who can manage cloud security while collaborating with the development teams.

Key Responsibilities :

Cloud Security Management :

- Design, implement, and maintain robust security measures for AWS cloud infrastructure.

- Conduct vulnerability assessments and remediate identified risks.

- Monitor and respond to security incidents, ensuring minimal impact on operations.

- Maintain compliance with industry standards such as DPDP & GDPR.

Threat Detection and Response :

- Develop and manage intrusion real-time detection systems and tools.

- Analyze and mitigate risks from potential breaches or exploits.

- Perform regular penetration tests and ensure remediation plans are executed.

Secure Application Deployment :

- Work closely with DevOps teams to integrate security measures into CI/CD pipelines.

- Ensure secure deployment setup of new application versions to production and non-production environments.

- Manage deployments of new application versions to the production environment.

- Automate security checks in deployment processes to prevent misconfigurations.

Access Management :

- Implement and manage Identity and Access Management (IAM) policies.

- Ensure least-privilege access principles across AWS resources.

- Regularly audit user permissions and key management practices.

Compliance and Documentation :

- Maintain security documentation and operational runbooks.

- Ensure compliance with internal and external security standards and policies.

- Prepare reports on security metrics and incidents for stakeholders.

Continuous Monitoring & Improvement :

- Stay updated on emerging threats, vulnerabilities, and AWS security features.

- Daily monitoring of services and costs associated with it. Organise tags for tracking spends across applications and services.

- Recommend and implement best practices to improve cloud security posture and reduce cost.

- Conduct training and knowledge-sharing sessions for internal teams on AWS infrastructure setup and cloud security.

Qualifications :

Technical Skills :

- Hands-on experience with AWS services like Elasticbeanstalk, S3, VPC, VPC Peering, EC2, CloudFront, RDS, Lambda, IAM, CloudTrail, CloudWatch, SNS, WAF and GuardDuty.

- Proficiency in managing firewalls, service roles, network configurations, security groups, internet gateways, and VPC setups.

- Strong understanding of AWS security frameworks, encryption protocols, and secure architecture design.

- Familiarity with tools like AWS WAF, Security Hub, Inspector, and CloudWatch.

- Experience with infrastructure-as-code tools like Terraform, CloudFormation, or CDK.

- Ability to write complex queries to build CloudWatch dashboards.

Soft Skills :

- Strong analytical and problem-solving abilities.

- Excellent communication and documentation skills.

- Ability to work in a fast-paced, dynamic environment and collaborate with cross-functional teams.

- Keen to pick up new technologies through self learning.

Education & Certifications (Preferred) :

- B.Tech/B.E. in any Specialization

- AWS Certified Security - Specialty