Job Description

As a Cloud Security Specialist, your primary responsibility is to ensure the security, privacy, and compliance of cloud-based systems and services within an organization.

You will play a crucial role in protecting sensitive data, identifying potential vulnerabilities, implementing security controls, and addressing security incidents. Your expertise will contribute to maintaining a robust and secure cloud infrastructure that aligns with industry best practices and regulatory requirements.

Key Responsibilities:

Cloud Security Strategy:

• Develop and implement a comprehensive cloud security strategy, considering the organization\'s objectives, risk tolerance, and compliance requirements.
• Collaborate with stakeholders, such as IT teams, developers, and business units, to align cloud security initiatives with overall business goals.
• Stay updated with emerging cloud security trends, technologies, and regulatory changes to continuously improve the security posture.

Cloud Security Architecture and Design:

• Design, review, and enhance cloud security architecture and solutions, ensuring that they meet industry standards and best practices.
• Evaluate cloud service providers, assess their security capabilities, and provide recommendations to ensure appropriate security controls are in place.
• Define security requirements for cloud-based systems, networks, and applications, including access controls, encryption, data protection, and identity and access management (IAM).

Cloud Security Implementation:

• Deploy and configure security tools, technologies, and controls in cloud environments to mitigate risks and protect against threats.
• Monitor and manage security incidents, perform vulnerability assessments, and conduct penetration testing to identify and address vulnerabilities proactively.
• Develop and enforce security policies, standards, and procedures specific to cloud environments.
• Implement and monitor security controls for cloud-native services, such as containerization platforms, serverless computing, and microservices architecture.

Compliance and Risk Management:

• Ensure compliance with relevant regulations, industry standards, and data privacy requirements (e.g., GDPR, HIPAA, PCI-DSS) within cloud environments.
• Conduct risk assessments and provide recommendations to mitigate identified risks.
• Collaborate with internal audit and compliance teams to perform cloud security audits and assessments.

Security Awareness and Training:

• Raise awareness about cloud security risks, best practices, and policies among employees, contractors, and stakeholders.
• Develop and deliver training programs and materials to educate users on secure cloud usage, data protection, and incident response.

Incident Response and Forensics:

• Develop and maintain an incident response plan specific to cloud environments.
• Investigate and respond to cloud security incidents, conduct root cause analysis, and implement corrective actions.
• Collaborate with internal teams, third-party vendors, and legal entities during security incident investigations and forensic analysis.

Qualifications and Skills:

• Bachelor\'s degree in Computer Science, Information Security, or a related field. A master\'s degree is preferred.
• Professional certifications such as Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH).
• Strong knowledge of cloud computing platforms (e.g., Amazon Web Services, Microsoft Azure, Google Cloud Platform) and their security features.
• Proficiency in cloud security concepts, including secure architecture design, network security, identity, and access management (IAM), encryption, and incident response.
• Experience with security tools and technologies specific to cloud environments, such as cloud access security brokers (CASBs), cloud workload protection platforms (CWPPs), and cloud security posture management (CSPM) tools.
• Familiarity with relevant compliance frameworks and standards (e.g., ISO 27001, NIST, CSA) and their application in cloud environments.
• Strong analytical and problem-solving skills, with the ability to identify and address security risks and vulnerabilities.
• Excellent communication and collaboration skills to work effectively with cross-functional teams.

Reg No. R22110166
BeathChapman Pte Ltd
Licence no. 16S8112

eFinancialCareers