The Job logo

What

Where

Cloud Security Engineer

ApplyJoin for More Updates

You must Sign In before continuing to the company website to apply.

Smart SummaryPowered by Roshi
As a Cloud Security Engineer at KPMG in Mumbai, Maharashtra, you will be responsible for designing, implementing, and maintaining cloud security for clients. You will contribute to innovation activities, design security architecture, develop security policies, perform assessments, and assist with incident response. This full-time on-site role requires 3-7 years of experience and a Bachelor or Master's degree.

Job description 

RESPONSIBILITIES

  • Design, Implement, and maintain the security of client’s cloud infrastructures and services.
  • Actively contribute to innovation activities which are undertaken in the area of cloud security.
  • Help end customer in designing cloud security architecture, design cloud security landing zone.
  • Develop and document security policies & procedures as per the requirements.
  • Perform cloud security assessment, prioritize security findings, and provide recommendations to mitigate the security gaps.
  • Develop custom playbooks for threat hunting and auto-remediation.
  • Assist with incident response in the event of a security breach.
  • Review of client’s cloud security posture and make recommendations for improvement.
  • Cloud on-boarding to tools such as Prisma, Dome9, Sysdig etc. Define relevant cloud policies, perform security remediation as per findings.
  • Responsible for managing CSPM, CWPP, CNAPP, Code Security, Data Security, Alert Management etc.

QUALIFICATIONS

  • Hands-on experience with at least one major public cloud platform, such as AWS, Azure, or Google Cloud Platform. Any other public cloud platform along with these will be an additional desirable attribute.
  • Experience in creating and evaluating cloud security architectures by following industry best practices. 
  • Hands-on experience on cloud native security features like Azure Sentinel, Microsoft Defender for cloud, CloudTrail, GuardDuty, Inspector, Security Hub, Command Centre etc.
  • In-depth knowledge of managing common cloud security threats and vulnerabilities.
  • Experience with security compliance standards such as ISO 27001/27002/27017, NIST, CSA CCM etc.
  • Understanding on various government and regulatory compliance requirements w.r.t cloud security
  • Knowledge of Identity and Access Management protocols/solutions such as SSO, SAML Federated Identity, RBACs & authorization solutions.
  • Experience with Linux & Windows operating systems for patch management, log management, and understanding on OS hardening requirements. 
  • Experience in scripting language such as Python, PowerShell etc. Security automation skills/experience will be an additional desirable attribute.
  • Experience in third party solutions such as Palo Alto Prisma Cloud, ZScaler, Sysdig, Checkpoint, etc. is desirable.
  • Good understanding of containerization technologies/concepts such as Kubernetes, Docker etc. and related security best practices.
  • Impeccable communication skills, both written and oral.
  • Strong organization and time-management skills, with the ability to swiftly transition between projects and tasks.
  • Must have one or more cloud certifications. Desirable certifications include: -
    • AZ-500 (Azure Security Engineer)
    • SC-100 (Cybersecurity Architect Expert)
    • AWS Certified Specialty – Security
    • Google Cloud Professional Cloud Security Engineer 
    • AZ-303 (Microsoft Azure Architect Technologies)
    • Prisma Certified Cloud Security Engineer (PCCSE)
Set alert for similar jobsCloud Security Engineer role in Mumbai, India
KPMG Logo

Company

KPMG

Job Posted

6 months ago

Job Type

Full-time

WorkMode

On-site

Experience Level

3-7 Years

Category

Technology

Locations

Mumbai, Maharashtra, India

Qualification

Bachelor or Master

Applicants

Be an early applicant

Related Jobs

KPMG Logo

Cloud Security ll Consultant

KPMG

Mumbai, Maharashtra, India

Posted: a year ago

Design, implement, and maintain the security of client’s cloud infrastructures and services. Help end customer in designing cloud security architecture. Develop and document security policies & procedures. Review client’s cloud security posture and provide recommendations for improvement.

Baker Hughes Logo

OT Security Engineer & Incident Response Lead

Baker Hughes

Mumbai, Maharashtra, India

Posted: a year ago

As an OT Security Engineer/Incident Response Lead at Baker Hughes, your role is central to safeguarding our operational technology (OT) environments from cyber threats. You will be responsible for implementing OT security measures, leading incident response efforts, validating security controls, and ensuring the resilience of our OT systems.   As a OT Security Engineer/Incident Response Lead you will be responsible for: Implementing and managing Security Implementation: OT security controls, measures, and technologies to protect critical assets and systems, drawing from your hands-on experience Leading incident response activities within the OT environment, including detection, investigation, and mitigation of security incidents Overseeing vulnerability assessment and management processes for OT systems, ensuring timely remediation. Monitoring continuously OT networks and systems for signs of compromise, applying practical knowledge to detect and respond to threats. Promoting a culture of security awareness among OT personnel and stakeholders, leveraging your experience to educate and train teams. Ensuring compliance with relevant industry standards and regulations specific to OT security, based on your practical understanding. Maintaining detailed documentation of security configurations, incident reports, and response plans, reflecting your real-world expertise. Working closely with cross-functional teams, including network engineers, system administrators, and external cybersecurity teams, to align security efforts with broader organizational objectives. Managing security tools and technologies used within the OT security program, applying your hands-on experience to optimize their effectiveness. Driving continuous improvement initiatives to enhance OT security and incident response capabilities based on evolving threats and industry developments. Fuel your passion   To be successful in this role you will: Have a Bachelor’s degree in a relevant field with minimum 5 years of relevant on-the-job work experience. Have Hands-on experience in OT security engineering, incident response, or a related field. Have Strong understanding of industrial control systems (ICS) and SCADA systems, gained through practical application Have Proven experience with OT and IT security technologies, including firewalls, intrusion detection systems (IDS), vulnerability detection, network discovery, log collection systems, and security information and event management (SIEM) solutions. Have Knowledge of OT security principles and best practices. Strong problem-solving abilities developed through on-the-job experience. Have Familiarity with the MITRE ATT&CK framework and adversary tactics, techniques, and processes with in the OT/ICS space. Have Effective communication skills and the ability to collaborate across teams. Have Relevant certifications (e.g., CISSP, GICSP, GCIH, GRID, Certified Incident Handler) that complement your practical expertise.