Job Description
<p><p><b>About The Job :</b><br/><br/>As a Cloud Security Engineer, you will play a critical role in safeguarding our cloud infrastructure by designing, implementing, and maintaining robust security architectures in cloud environments, primarily focusing on OpenStack.<br/><br/>You will be responsible for enforcing security best practices, monitoring threats, responding to incidents, and continuously enhancing our cloud security posture to protect sensitive data and services.<br/><br/><b>Key Responsibilities :</b><br/><br/>- Design and implement comprehensive network security architectures tailored for cloud environments, with an emphasis on OpenStack platforms.<br/><br/>- Configure and manage firewall rules, Network Access Control Lists (ACLs), and security groups to enforce strict least-privilege access models and minimize exposure to threats.<br/><br/>- Continuously evaluate and optimize cloud security group configurations to reduce the attack surface and prevent unauthorized access.<br/><br/>- Deploy, configure, and maintain virtual firewalls, Web Application Firewalls (WAFs), and Intrusion Detection/Prevention Systems (IDS/IPS) within cloud infrastructure.<br/><br/>- Monitor firewall traffic patterns to detect anomalies and troubleshoot issues impacting network security or performance.<br/><br/>- Collaborate with network and cloud teams to ensure secure network segmentation and traffic flow.<br/><br/>- Deploy and maintain antivirus (AV) and antimalware solutions across all cloud-hosted workloads, including virtual machines (VMs), containers, and serverless components.<br/><br/>- Integrate Endpoint Detection and Response (EDR) and Extended Detection and Response (XDR) platforms to enhance threat detection, investigation, and automated response capabilities in cloud environments.<br/><br/>- Ensure regular updates, signature definitions, vulnerability scans, and logging are performed on AV systems to maintain robust endpoint protection.<br/><br/>- Utilize Security Information and Event Management (SIEM) tools to monitor cloud infrastructure for suspicious activity, security policy violations, and potential threats.<br/><br/>- Investigate alerts, analyze network logs, and conduct root cause analysis of security incidents or breaches.<br/><br/>- Develop and implement automated alerts, response playbooks, and remediation workflows for network threats and misconfigurations.<br/><br/>- Work closely with incident response teams and customers to manage and resolve cloud security incidents in a timely and effective manner.<br/><br/>- Maintain accurate documentation of security configurations, incident response procedures, and architectural diagrams for cloud security infrastructure.<br/><br/>- Ensure compliance with internal security policies, industry standards, and regulatory requirements relevant to cloud security.<br/><br/>- Participate in regular security audits, vulnerability assessments, and penetration tests to identify gaps and improve defenses.<br/><br/><b>Qualifications & Skills :</b><br/><br/>- Bachelors degree in Computer Science, Information Security, or a related field; relevant certifications (e.g., CISSP, CCSP, AWS Security Specialty) are a plus.<br/><br/>- Strong hands-on experience with cloud security architecture and administration, specifically in OpenStack or similar IaaS platforms.<br/><br/>- Proficiency in managing firewall policies, ACLs, and security groups in cloud and hybrid environments.<br/><br/>- Familiarity with virtual security appliances, including firewalls, WAFs, IDS/IPS systems.<br/><br/>- Experience with endpoint protection tools and integration of EDR/XDR solutions in cloud environments.<br/><br/>- Skilled in using SIEM tools (e.g., Splunk, QRadar, Elastic Stack) for threat monitoring and incident investigation.<br/><br/>- Strong analytical and problem-solving skills for incident analysis and threat hunting.<br/><br/>- Knowledge of networking fundamentals, TCP/IP, VPNs, and secure protocols.<br/><br/>- Ability to automate security workflows using scripting languages or orchestration tools (e.g., Python, Ansible).<br/><br/>- Excellent communication skills to collaborate with cross-functional teams and report security status to leadership</p><br/></p> (ref:hirist.tech)