Cloud Security - Consultant Specialist (GCB-5.1)

Experience : 5-8+ Years

Location : Pune (Only Locals)

Job Mode : WFO

Skills : Amazon Web Services and (Google Cloud Services, Microsoft Azure, Alibaba Cloud)

About :

The role of Cloud Security Consultant Specialist is responsible for continually assessing the posture and maturity of cloud security engineering, designing, and championing security solutions/ opportunities.
It supports the execution of capabilities aligned to their cloud security vision to support strategic business objectives at an enterprise level, enabling HSBC to make robust strategic and operational decisions in relation to business and cyber security requirements.

Responsibilities :

- Managing development of security rules, configurations, automation (including for example, API integrations) and recommending configuration changes to improve the effectiveness, performance, usability, and value of cloud security tools in one or more cloud platforms with particular focus on Amazon Web Services (AWS).

- Ownership of security outcomes (in relation to applicable cloud platforms) as per management direction and HSBC Policy.

- Reviewing/ challenging/ escalating requests from Global Businesses and Functions for exemptions/ exceptions from mandatory security requirements; driving consistent policy, process and management across all Cloud platforms.

- Actively participating in Global Businesses and Functions Architecture/ Design/ Cloud Deployment Pattern reviews and providing feedback to ensure cloud services meet mandatory security requirements and operate in a secure way.

- Oversight of Cloud Security Assessment security reviews, through manual and automated processes.

- Collaboratively work with vendors, client staff and contractors to implement and integrate vendor-provided Cloud Security solutions as required.

- Liaising with Cloud platform engineers, architects, and business stakeholders to understand and drive best practice aligned to Client mandatory controls.

- Review Client Cloud Security Baseline documentation, in particular with respect to AWS platform services, to ensure accuracy, relevance, applicability and currency.

- Driving continuous improvement of cloud security and automated processes to minimize variation and ensure predictable high-quality code and data.

- Supporting incident management processes where appropriate including incident reviews, providing analysis, data, reporting where required.

- Proactively researching emerging threats and vulnerabilities to aid in the identification of cloud threats.

Skills and Experience :

To be successful in this role, you should meet the following requirements :

- Expert level knowledge and hands on experience in any one or more of Client's current Cloud platforms with particular focus on AWS.

- Extensive working knowledge of software development and mandatory control deployment tools; e.g GitHub, MS Visual Studio, Python, Bash, PowerShell, SQL, and data formats such as XML, JSON, CSV.

- Extensive knowledge of cloud vendor tooling e.g JupiterOne.

- Customer/stakeholder focus. Ability to build strong relationships with Cloud platform teams, security architects, application teams, cross functional IT and global/local IT teams.

- Self-motivated and possessing of a high sense of urgency and personal integrity.

- Strong problem-solving and trouble-shooting skills.

- Strong knowledge of Agile working methodologies.

- Excellent written and spoken communication skills with an ability to: communicate with impact, ensuring complex information is articulated in a meaningful way to wide and varied audiences; produce clear and concise reports/control documentation for targeted audiences across internal and external stakeholders.

Optional Skills :

- Experience of working with Kubernetes or other container orchestration experience in building and deploying applications on the Cloud, using CI/CD frameworks and Infrastructure automation, such as: Jenkins, Terraform, Ansible, GitHub and Nexus.

- Professional Security related qualifications.

- Desirable to have one or more industry-recognised cybersecurity-related certifications including CISSP, CRISC, CISM or Cloud Security Certifications