Cloud security Consultant

Recruitments:

• At least 4 years of experience in IT Security is required
• Good English written/verbal communication skills (C1)
• Deep architectural knowledge in the area of leading cloud providers are needed (Azure, AWS nice to have Ali Cloud); hybrid/multi-cloud integration knowledge would be highly appreciated
• Demonstrated understanding of IT Security domains: security and risk management, asset security, security architecture and engineering, communications and network security, identity and access management, security assessment, and testing
• Experience with Github: security settings, features, and security risks for the service
• Knowledge about Landing Zone aspects and Infrastructure-as-
• Code (IaC) for AWS/AZURE and security services related to it
• Experience with containers eg. EKS, AKS, and Docker for AWS and Azure cloud
• Hands-on experience in DevSecOps, SSDLC, CI/CD security pipeline would be of great advantage
• Knowledge of IT security frameworks and standards is required (ISO2700x, CIS Benchmarks, NIST, Well Architecture Frameworks for AWS/AZURE)
• Completed certification in on or more enlisted cloud security paths: CCSK by CSA, AZ-500 by Microsoft, SCS-C01 by AWS
• Cross-sectional knowledge of the basics of security technology is required: CNAP/CNAPP, SIEM, SOAR, IDAM, DLP, IAM, PIM/PUM, BDS; hands-on experience with the usage or deployments of at least one of those would be of great advantage
• Good presentation skills to provide clear and supportive information to non-technical audiences
• Ability to work autonomously and to lead tasks assigned from the beginning to the end
• Being able to work with many tasks at the same time
• Good team skills, open to other cultures

Responsibilities:

• Designing security architecture for cloud deployments, minimum safeguards, introducing security baselines (mostly Azure, AWS)
• Supporting internal stakeholders in any affair concerning cloud security topics
• Providing deep technical advisory to internal IT teams to follow the best cloud security practices
• Deploying and maintaining native and 3rd party security products in cloud environments, especially CNAPP/CSPM/CWPP
• Conducting risk, network, and vulnerability evaluations against defined security requirements
• Contributing to the compliance evaluations against internal and external regulations that touch cloud deployments
• Support internal IT teams in implementing security requirements and security good practices
• Contributing to the Danone technology communities in building a common knowledge base on cyber security/information security
• Participation in the evaluation of cloud products (PaaS, SaaS, IaaS)
• Researching for latest cloud security threats, analyzing the current situation and providing feedback for internal cloud security knowledge base. Provide the solutions or workarounds to mitigate the risks