Support the design and implementation of security configurations across public cloud platforms (AWS, GCP, Azure), including IAM, security groups, WAFs, and other built-in security services
Contribute to securing hybrid infrastructure environments by following best practices around network segmentation, access control, and encryption
Help harden containerized environments (Kubernetes, Docker) and ensure secure configurations of virtual machines and operating systems
Participate in defining and maintaining baseline security standards for applications, servers, and networks
Assist in conducting regular cloud security reviews, identifying misconfigurations or vulnerabilities, and collaborating on remediation plans
Integrate security checks into CI/CD workflows using tools for static and dynamic analysis (SAST, DAST) and dependency scanning (SCA)
Write automation scripts (Python, Bash) to streamline security operations and contribute to Infrastructure as Code templates using tools like Terraform or CloudFormation
Set up and fine-tune monitoring and logging for cloud environments using tools like CloudTrail, GuardDuty, and centralized SIEM platforms
Support the incident response team by gathering logs, performing initial triage, and contributing to investigations and reporting
Help prepare documentation and evidence for audits and compliance activities under standards like ISO 27001 and SOC 2
Collaborate with engineering and DevOps teams to promote secure design principles during feature development, especially for large-scale OTT platforms handling sensitive user and content data
Stay updated on emerging security threats and trends in the media streaming space, and help implement controls tailored to OTT infrastructure challenges (e.g., CDN security, content DRM, platform abuse)
