Role & Responsibilities
- Implement and manage native security controls across AWS and Azure environments.
- Configure IAM, RBAC, Conditional Access, PIM, and governance policies to ensure secure access management.
- Monitor cloud environments using GuardDuty, CloudTrail, Security Hub, Sentinel, Azure Monitor, and Defender for Cloud.
- Enforce network security using Security Groups, NSGs, NACLs, Azure Firewall, and WAF.
- Ensure data protection using KMS, Key Vault, S3 Encryption, TDE, and Secrets Management.
- Conduct security posture assessments and implement remediation plans using AWS Config and Azure Policy.
- Respond to cloud security incidents, investigate alerts, and perform root cause analysis.
- Ensure compliance with organizational and industry security standards.
- Automate security controls and governance using scripts, policies, or cloud-native automation tools.
Preferred Candidate Profile
- Hands-on experience in AWS and Azure native security tools and cloud governance frameworks.
- Strong understanding of identity & access security (IAM, RBAC, PIM, Conditional Access).
- Experience with threat detection, monitoring, and incident response in multi-cloud environments.
- Knowledge of network security controls including SGs, NSGs, Firewalls, WAF, and DDoS protection.
- Familiar with data encryption, key management, and secrets management in cloud platforms.
- Ability to review, analyze, and improve cloud security posture.
- Certification preferred: AWS Security Specialty, Azure Security Engineer (AZ-500), or equivalent.
- Strong communication skills and ability to work with cross-functional teams.
- Experience in C2H (Contract-to-Hire) engagements is an added advantage.
