IT-Public Cloud Security Engineer

We are looking for a skilled and proactive Cloud Security Engineer

Hyderabad, Bangalore, and Chennai

This job is centred around the following practical tasks:

Public cloud security architecture and compliance

• Selecting and deploying key native public cloud security tools and enabling the required security features in AWS and GCP
• Cloud security governance and compliance, including applying relevant security policies and ensuring that our public cloud infrastructure meets industry standard security baselines (e.g. CIS)
• Working with IT and other Grid Dynamics teams on creating, deploying, and updating cloud security configuration templates/standard builds/etc.
• Assisting with cloud key management in order to prevent hardcoding (AWS KMS and GCP’s Key Management, HashiCorp Vault etc.)
• Enabling and configuring cloud web application firewalls such as AWS WAF and Google Cloud Armor

Public cloud security monitoring and incident response

• Assisting with Elastic SIEM roll-out and implementation in both AWS and GCP, enabling and configuring native cloud security monitoring tools (CloudWatch, Google Cloud Logging & Monitoring) to work with Elastic SIEM
• Threat detection and response in the cloud (AWS GuardDuty, AWS Detective, Google Security Command Center, Chronicle)
• Cloud data classification and protection (Amazon Macie, Google Data Loss Prevention (DLP)
• Collaborating with IT and an external SOC provider on incident-related matters
• Producing cloud alerts and incidents metrics for high level management reports

Public cloud security auditing and vulnerability management

• Conducting regular security assessments and participating in internal audits employing native cloud vulnerability scanning tools (AWS Inspector and Google Security Command Center), as well as compliance checkers (AWS Config, AWS Audit Manager, GCP Policy Intelligence)
• Assisting the affected systems owners in mitigating the uncovered vulnerabilities and security misconfigurations
• Assisting developers with utilising SDLC-centric cloud security tools such as AWS CloudGuru, SageMaker Clarify, CodeWhisperer.
• Producing vulnerability metrics for high level management reports

General requirements

• Where necessary, readiness to respond out of business hours taking into account Grid Dynamics geography
• Being able to take initiative in solving security problems
• Self-discipline and consistency in taking care of routine tasks
• Being collaborative with other security team members, as well as IT and various development/engineering teams, or any users of the affected systems

Education & Qualifications

• Bachelor’s or Master’s degree in

  Computer Science

  ,

  Information Security

  ,

  Engineering

  , or a related field.

cloud security certifications

• AWS Certified Security – Specialty

• Google Professional Cloud Security Engineer

• Certified Information Systems Security Professional (CISSP)

• Certified Cloud Security Professional (CCSP)