Location: Stockholm Requisition Number: 200202 Job Category: Cloud Infrastructure Management
Job Description
As a Cloud Security Engineer, you will work closely with developers and own the “SecOps” part of DevSecOps to ensure cloud-native workloads are deployed according to IT best practices for security, governance, identity, access management and monitoring.
What will you be doing?
Translate the cloud strategy and architecture into a highly secure technical implementation in accordance with best practices.
Continuously monitor, look for and optimize solutions for technical and cost-efficiencies.
Based on your knowledge and experience of working with security policies, firewalls, encryption and security information and event management (SIEM) systems, you will play a key role in implementing secure hybrid IT models by integrating different cloud services with back-end traditional data-center services in a secure manner.
Experience
5+ Years of experience in Security Architecture
3+ Years of experience in Security Design
2+ Years of experience in cloud (Azure/AWS/GCP) and DevOps skills
Have significant experience performing security design and review in complex environments
Deep knowledge of cloud operational models and secure SaaS architecture
Subject matter expertise in multiple domains, including cloud security, web security, mobile security, and infrastructure security.
Excellent knowledge on Authentication mechanisms such as AD
Experience in applying security to cloud technologies (Managing secrets, Securing CD pipeline, Secure Infrastructure as Code, Container Security)
Expertise in cloud architecture and security fundamentals including containers, software-defined networks, high availability design, multi cloud, and server-less compute.
Hands on experience in driving end to end security for cloud product - SAST, DAST, IAST, OSS scanning, pen testing.
Experience in set up and ensure execution of a continuous security monitoring plan
Expert in threat modeling and secure architecture review.
Knowledge of compliance requirements for industry standard certifications like PCI DSS, SOC2, HIPAA, FedRAMP.