Job description 

Cloud Engineer
The Cloud Engineer India assists in the design planning for the company's cloud platform. Working under close supervision, this job supports operational plans for the processes and standards of developing the organization's technology architecture through the creation of a new cloud platform design. This job is also responsible for maintaining consistent knowledge of emerging trends and technologies in the related technology space.

Key Responsibilities and Duties

• Participates in the collaboration with various stakeholders on the strategic vision for the enterprise leveraging cloud, managed solutions and traditional capabilities and makes recommendations on new solutions and technologies.
• Supports the design and implementation of cutting edge cloud platform within the organization.
• Ensures cloud platform allows business applications to transform into scalable, elastic systems that can be created on demand.
• Assists with hardware and software infrastructure updates and improvements as needed and integration with the cloud infrastructure.
• Provides threat analysis consultation, when needed, across functional teams of the organization, both within the operating business unit and to information technology (IT) teams.
• Maintains technical knowledge of IT trends and emerging technologies to best inform cloud design, architecture and decision making processes.
• Communicates with management to provide updates and ensure integration of new system with existing operations to support the organization's cloud strategy.

Educational Requirements

• University (Degree) Preferred

Work Experience

• No Experience Required

Physical Requirements

• Physical Requirements: Sedentary Work

Career Level
5IC
 

Role: Cloud Security Engineer with SaaS (Multi-Cloud) 

Implement cloud security strategy, standards, procedures, best practices, and DevSecOps. 

Implement processes and technical controls supporting cloud security standards including integration of cloud services and workloads into corporate cybersecurity services. 

Collaborate with operations and engineering teams to implement and tune cloud-native security monitoring, tooling and reporting 

Implement CSPM tools such as wiz.io across multiple cloud platforms 

Define cloud security policies, standards, and best practices in a multi-cloud environment 

Promote awareness of corporate cybersecurity policy, standards and guidelines 

Design cloud-based network traffic flows to drive anomaly detection capability 

Mentor engineering and operations staff on unique cloud-based security controls 

Develop tools to improve cloud specific anomaly detection requirements 

Foster a culture of security by partnering with solutions architects & other business teams to balance key performance and security 

Perform regular reviews of cloud infrastructure for security, and cloud best practices. 

Develop threat models to identify risks and prioritize improvements to our architecture. 

Drive the adoption of Authentication and Authorization reference architectures for managing cloud infrastructure. 

Educate peers on applying the latest cloud native technologies when developing new services, systemsand applications. 

Contribute to a secure/compliant cloud-native service catalog, repositories 

Maintain Compliance across our Production, Development and Corporate systems hosted in the public clouds 

Collaborate with engineering and operations teams toward implementing controls and processes that address identified gaps 

Document SaaS application configuration settings, integrations, service accounts and take ownership of recertification needs.  

Build compliance requirements and SaaS Application security baselines, ensuring SaaS applications are implemented to align with requirements. 

Evaluate new applications to ensure implementation can meet security baselines.  

Research options for compliance remediation and coordinate with the Systems Administration team to implement solutions.  

Determine risks and remediation options with implemented SaaS applications.  

Ensure all SaaS applications are configured with best practices and perform routine auditing of settings and newly released features.  

Examine all relevant application logs to determinetrends and identify incidents or areas for concern.  

Validate and maintain incident response plans and processes to address potential threats.  

Compile and analyze data for management reporting and metrics.  

Ensure that all SaaS applications follow a standardizelifecycle management process and perform routine audits as necessary.  

Perform account lifecycle management auditing tasks and create documentation detailing account lifecycle needs.  

Perform continuous monitoring of company applications identifying areas of shadow IT and initiating remediation efforts. 

Preferred qualifications & experience: 

Compliance Automation 

Strong experience in vulnerability management & risk assessment 

Strong experience in implementing CIS, NIST & other benchmarks  

Encryption theory & key management (PKI) 

Multi-Cloud security experience working in the Financial industry 

Proficient in analyzing architecture patterns, diagrams, Network & application architecture 

Ability to identify threat surfaces & identify pro-active & reactive security controls to minimize the overall residual risk. 

Cloud certifications in  AWS & GCP is preferred. 

  3+ years experience managing or auditing SaaSapplications. Security+, CISSP, or related certification preferred.  

Demonstrated experience with process automation and improvement.  

Proficiency with at least one scripting language (e.g., Perl, Python and PowerShell). 

Related Skills

Application Programming Interface (API) Development/Integration, Automation, Communication, Consultative Communication, Containerization, DevOps, Enterprise Application Integration, Influence, Organizational Savviness, Problem Solving, Prototyping, Relationship Management, Scalability/Reliability, Software Development Life Cycle, Systems Design/Analysis