PRINCIPAL ACCOUNTABILITIES: 

• Conduct in-depth cloud security reviews of our Azure and AWS environments. Pinpoint risks and recommend proven mitigations aligned to industry best practices.

• Engineer and implement secure cloud configurations on Azure and AWS, ensuring adherence to security and data governance policies.

• Implement identity and access protocols, harden cloud configurations, and stay on top of evolving cloud security paradigms to further strengthen our posture.

• Collaborate with internal stakeholders and external providers to refine and deploy robust, tailored security controls per cloud service.

• Create scripts and automation to deploy and manage network firewalls, endpoint protection, SIEM platforms and other security solutions at scale.

• Incorporate security testing and scans within CI/CD pipelines on Azure DevOps and AWS CodePipeline to bake-in security.

• Evaluate and recommend new cloud security technologies to augment defenses and thwart emerging threats.

• Manage and troubleshoot issues with network firewalls, endpoint security, SIEM platforms; diagnosing root causes and developing preventive fixes.

• Administering network firewalls (NGFWs) to implement access controls and traffic filtering.

• Managing endpoint protection (EPP) solutions to secure workstations, servers, and mobile devices.

• Administering security information and event management (SIEM) platforms for centralized logging, monitoring, and incident response.

• Partner with internal departments to promote security awareness and help enhance their cyber defenses.

• Follow proven enterprise change management processes, including ticketing systems to track, manage and document changes.

• Take on additional assignments critical to the role and aligned to the responsibilities above.

EDUCATION, EXPERIENCE & SKILLS:

• Bachelor's degree in Computer Science, Cybersecurity, a related field or equivalent work experience.

• In-demand certifications like AWS Certified Security - Specialist, Microsoft Certified: Azure Security Engineer Associate.

• Hands-on expertise securing Azure, AWS, and leveraging their security offerings.

• Savvy with security tools including Azure Security Center, AWS Security Hub, Azure Sentinel, AWS GuardDuty.

• Skilled in scripting languages like PowerShell, Python, Bash to enable security automation.

• Knowledge of integrating security within CI/CD pipelines per DevSecOps principles.

• Experience with infrastructure-as-code tools like Terraform, CloudFormation or Azure ARM templates.

• Analytical prowess to dissect complex security challenges and drive innovative solutions.

• Superb written and verbal aptitude to liaise with diverse stakeholders.

• Knowledge of basic system administration, exposure to NGFWs, EPP solutions, enterprise SIEMs, and advanced troubleshooting.