Develop and document security policies, procedures, and guidelines for cloud environments.
Develop risk assessment and security frameworks to support a comprehensive and consistent risk assessment methodology suited to the environment.
Conduct architecture reviews and threat modelling exercises for new and existing systems, identifying design-level risks and recommending mitigations
Produce clear, actionable risk assessment reports with prioritised recommendations for risk treatment and mitigation, tailored to the risk appetite and regulatory expectations.
Review and finetune detection rules, correlation logic, and security policies to improve alert fidelity, reduce false positives, and enhance the overall effectiveness of security controls
Collaborate with Security Engineering team to continuously improve detection and response capabilities through regular reviews and feedback loops
