Cloud security Consultant
Recruitments:
- At least 4 years of experience in IT Security is required
- Good English written/verbal communication skills (C1)
- Deep architectural knowledge in the area of leading cloud providers are needed (Azure, AWS nice to have Ali Cloud); hybrid/multi-cloud integration knowledge would be highly appreciated
- Demonstrated understanding of IT Security domains: security and risk management, asset security, security architecture and engineering, communications and network security, identity and access management, security assessment, and testing
- Experience with Github: security settings, features, and security risks for the service
- Knowledge about Landing Zone aspects and Infrastructure-as-
- Code (IaC) for AWS/AZURE and security services related to it
- Experience with containers eg. EKS, AKS, and Docker for AWS and Azure cloud
- Hands-on experience in DevSecOps, SSDLC, CI/CD security pipeline would be of great advantage
- Knowledge of IT security frameworks and standards is required (ISO2700x, CIS Benchmarks, NIST, Well Architecture Frameworks for AWS/AZURE)
- Completed certification in on or more enlisted cloud security paths: CCSK by CSA, AZ-500 by Microsoft, SCS-C01 by AWS
- Cross-sectional knowledge of the basics of security technology is required: CNAP/CNAPP, SIEM, SOAR, IDAM, DLP, IAM, PIM/PUM, BDS; hands-on experience with the usage or deployments of at least one of those would be of great advantage
- Good presentation skills to provide clear and supportive information to non-technical audiences
- Ability to work autonomously and to lead tasks assigned from the beginning to the end
- Being able to work with many tasks at the same time
- Good team skills, open to other cultures
Responsibilities:
- Designing security architecture for cloud deployments, minimum safeguards, introducing security baselines (mostly Azure, AWS)
- Supporting internal stakeholders in any affair concerning cloud security topics
- Providing deep technical advisory to internal IT teams to follow the best cloud security practices
- Deploying and maintaining native and 3rd party security products in cloud environments, especially CNAPP/CSPM/CWPP
- Conducting risk, network, and vulnerability evaluations against defined security requirements
- Contributing to the compliance evaluations against internal and external regulations that touch cloud deployments
- Support internal IT teams in implementing security requirements and security good practices
- Contributing to the Danone technology communities in building a common knowledge base on cyber security/information security
- Participation in the evaluation of cloud products (PaaS, SaaS, IaaS)
- Researching for latest cloud security threats, analyzing the current situation and providing feedback for internal cloud security knowledge base. Provide the solutions or workarounds to mitigate the risks
Bądź pierwszy, który ubiega się o to miejsce pracy!
-
Dlaczego szukać pracy na HitPraca.pl?
Subskrybuj oferty pracy
Codziennie nowe oferty pracy Możesz wybierać z bardzo szerokiej gamy ofert pracy - naszym celem jest posiadanie jak najszerszej oferty pracy Otrzymuj nowe oferty e-mailem Bądź pierwszym, który odpowie na nowe oferty pracy Wszystkie oferty pracy w jednym miejscu (od pracodawców, agencji pośrednictwa pracy i innych portali) Wszystkie usługi dla kandydatów do pracy są bezpłatne Pomożemy Ci znaleźć nową pracę