Senior Cloud/Infrastructure Security Engineer

Senior Cloud/Infrastructure Security Engineer

Requirements

• 5+ years of hands-on experience on infrastructure and network security engineering / architecture, protocols and technologies like CNAPP, CSPM, MDM, IAM, DDoS
• 5+ years of hands-on experience in performing network and/or cloud penetration testing
• Experience with scripting (such as Python, PowerShell etc.)
• Knowledge of Active Directory (key concepts, protocols, services, tiering, main attacks, best practices for hardening etc.)
• Knowledge of Cryptography concepts, encryption algorithms, protocols, keys and certificates management
• Hands-on experience with security concepts on Azure cloud environments and services (Azure EntraID, Azure Key Vault, Azure encryption, Azure Sentinel, NSG, Azure firewall etc.)
• Experience with security incident response and investigation
• Ability to foster collaborative, open and working relationships with technology and other stakeholders
• Experience with security standards and compliance programs such as OWASP, NIST, FedRAMP, PCI, SANS CIS 20
• An Information Security qualification or evidence of starting to work towards e.g. OSCP, eJPT AZ-500, GIAC GPEN or similar certification
• Ability to handle multiple tasks, prioritize and meet deadlines

Responsibilities

• Perform technical security design, architecture, change and/or configuration audits/reviews on our hosting and corporate infrastructure systems including Azure cloud environments, servers, network devices, endpoints, and security technologies deployed (CNAPP, MDM, WAF, DDoS, etc.)
• Act as the main SPOC for the network and cloud vulnerability management activities to perform scanning, internal and third-party penetration testing and red teaming as well as analysis and retesting of the reported security findings
• Collaborate with the SOC team to enhance our detection and response processes and capabilities
• Support the security initiatives for securing our Azure environments (EntraID Conditional Access, CSPM, Infrastructure as Code, NSG rules review etc.)
• Provide support to the GRC team on the technical security controls related to compliance initiatives (such as FedRAMP, PCI, NIST 800-53 r5, IRAP, SANS CIS 20) and the technical security questions from customers and prospects
• Act as the SME on infrastructure and cloud security topics, expand and develop sharing of technical knowledge and collaborate with multiple internal teams to review and improve the technical architecture and efficiency of IT and security operational processes

Preferred Qualifications

• Ability to handle multiple tasks, prioritize and meet deadlines
• Ability to foster collaborative, open and working relationships with technology and other stakeholders