Key Responsibilities

1. Implement and maintain cloud security controls across AWS, Azure, or GCP.
2. Support compliance with industry standards (PCI-DSS, ISO 27001, SOC 2, GDPR).
3. Conduct security assessments, vulnerability scans, and penetration testing.
4. Monitor and respond to incidents in cloud and container environments.
5. Assist in defining IAM policies, network segmentation, and key management.
6. Collaborate with DevOps to embed security into CI/CD pipelines (DevSecOps).
7. Support audits and prepare documentation for regulators and partners.
8. Research and integrate modern tools for threat detection and monitoring.

Qualifications and Skills

1. 3–5 years of experience in cloud security, cybersecurity, or DevSecOps.
2. Hands-on expertise with AWS (preferred) or other cloud platforms.
3. Knowledge of container security (Docker, Kubernetes, ECS/EKS).
4. Familiarity with SIEM tools, WAF, IDS/IPS, and vulnerability management.
5. Experience with scripting (Python, Bash) for automation.
6. Strong understanding of IAM, encryption, key rotation, and secrets management.
7. Awareness of compliance frameworks (PCI-DSS, ISO, GDPR).
8. Good communication skills and ability to collaborate across teams.