Lead Cloud Security Engineer - AWS @ Head Infotech India

Roles & Responsibilities:

Security Architecture Review: Review and assess the security architecture of cloud-based systems and applications to identify gaps and recommend improvements in alignment with industry best practices and regulatory requirements.

Understand the Amazon identity management ecosystem holistically and create a secure infrastructure, Enforce compliance with IAM principals including least privilege access, password management, Audit logging, RBAC, user account lifecycle, certificate management and system authentication solutions(SSO/Federation).

Cloud Compliance Management: Ensure cloud environments adhere to relevant compliance standards and regulations by implementing appropriate security controls, conducting compliance assessments, and generating compliance reports.

Cloud Security Governance: Establish and maintain cloud security governance frameworks, policies, and procedures to ensure consistent and effective management of security risks across cloud environments.

Incident Response: Actively participate in incident response activities related to cloud security incidents, including investigation, containment, eradication, and recovery.

Cloud Security Tooling: Evaluate, select, deploy, and manage security tools and technologies specifically designed for cloud environments, such as cloud access security brokers (CASBs), cloud workload protection platforms (CWPPs), and cloud-native security services. Tools like Prisma Cloud, Orca Security, etc.

Cloud Security Automation: Develop and implement automation scripts and workflows to streamline security operations tasks, such as configuration management, vulnerability scanning, and incident response orchestration.

Cloud Risk Assessment: Conduct risk assessments of cloud services, configurations, and deployments to identify and prioritize security risks, and collaborate with relevant teams to mitigate identified risks.

Cloud Security Research and Innovation: Stay abreast of emerging threats, vulnerabilities, and security trends in cloud computing, and actively engage in research and innovation to enhance the organization's cloud security posture.

Lead Remediation for findings from CSPM (Cloud Security Posture Management), work with developers on targeted remediation based on prioritization.

Partner with SOC team for Security Incident Management and Remediation triage with Engineering across the ecosystem.

Collaborate with cross-functional teams to integrate security best practices into the development and deployment processes.

Requirements and Qualifications:

Bachelor's or Master's degree in Computer Science, Information Security, or related field is must.

8 -12 years of proven experience in securing cloud infrastructure roles.

Proficiency in Security-Compliance, Cloud and Infrastructure Security.

Strong understanding of security principles and best practices.

Knowledge of industry-standard security frameworks and regulations.

Solid understanding of Amazon Web Services (AWS) including VPC, ELB, IAM, KMS, EC2, S3, CloudTrail, CloudFormation, etc

Understanding of security frameworks and standards like OWASP & NIST

Skills and Abilities

Excellent communication and interpersonal skills.

Ability to analyze complex systems and identify security risks.

Strong problem-solving skills and attention to detail.

Up-to-date knowledge of industry trends and emerging threats.

If you are passionate about securing real money games and have a proven track record in risk and compliance, we invite you to apply for this challenging and rewarding role. Join us in shaping the future of responsible gaming!