Specialist, Cloud Security & Vulnerability Management

We are in search of an intermediate security specialist to join our esteemed Global Cybersecurity Services Team. This role will play a pivotal part in bolstering our security technology stack, crafting AI-centric security automation workflows, and contributing to security operations and vulnerability management initiatives.

In our quest to establish a cutting-edge, multi-cloud, intelligence-driven security operations framework, we are seeking a professional who can bring their expertise in engineering and operations across all levels.

Responsibilities:

• Investigate Threat Monitoring incidents thoroughly, perform incident triage, and conduct root cause analysis using various open-source and proprietary tools.
• Engage in Security Engineering tasks by developing, maintaining, and improving our security operations technology stack, including advanced SIEM and SOAR solutions. Manage the detection use case lifecycle and actively incorporate AI into workflows.
• Demonstrate proficiency in end-to-end Incident Response, provide guidance during investigations, incidents, and decisively drive containment, mitigation, and other essential security measures.
• Focus on Cloud & Container Security by devising, implementing, and managing advanced security controls in cloud environments. Operationalize Configurations and Vulnerability management process in cloud assets, leveraging tools such as AWS GuardDuty, Google SCC, Azure Security Centre, CNAPP solutions, etc.
• Take charge of Vulnerability Management by setting up, executing, and maintaining routine vulnerability scans across on-premises and cloud environments. Analyze scan results, assess vulnerability severity, and prioritize remediation based on risk and business impact. Collaborate with IT Operations and stakeholders to recommend fixes and oversee remediation progress.
• Lead Security Projects encompassing various areas such as Cloud Security Posture Management (CSPM), Container Security, AWS, Azure, GCP enhancements, Runtime Vulnerability Management, Threat Hunting, Network/Endpoint/Cloud security reviews, and more.
• Demonstrate leadership abilities through cross-functional collaboration, stakeholder management, and the ability to lead and foster a team of junior security specialists.

Requirements:

• 5-7 years of Information Security experience with practical expertise in areas like Security Operations, Security Engineering, Digital Forensics, Incident Response, Endpoint Security, or Cloud Security.
• Hands-on experience with SIEM, EPP/EDR/XDR, SOAR, Cloud Security tools, Digital Forensics tools, and software applications.
• Working understanding of Cloud environments such as AWS, Azure, and GCP.
• Experience with Amazon EKS and Azure AKS for managing, securing, and orchestrating container platforms.
• Proven experience in implementing AI/ML in cybersecurity scenarios.
• Proficiency in scripting languages for automating tasks, data manipulation, or programming.
• Self-motivated, detail-oriented, and results-driven with excellent communication skills in English (verbal and written).