Cloud Security DevOps Engineer
Location: Bengaluru
Experience: 4 to 7 yrs
Salary: 10 to 15 LPA
* The Cloud Security DevOps Engineer will be responsible for ensuring the security and compliance aspects of cloudbased infrastructure.
* The incumbent should be knowledgeable in DevOps Cloud Kubernetes Terraform Python and have a deep understanding of the ISO framework.
* The successful candidate will work closely with the technology team to deliver secure and reliable cloud based solutions for companies India clients.
For enquiry contact
Requirements
Required Skills & Qualifications:
* Bachelors degree in Computer Science Information Technology or related field.
* Implements security controls risk assessment framework and program that align to regulatory requirements on Cloud.
* Experience in evaluating Information security policies procedures and standards.
* Evaluates risks and develops security standards procedures and controls to manage risks.
* Implements processes such as GRC (governance risk and compliance) to automate and continuously monitor information security controls exceptions risks testing. Develops reporting metrics dashboards and evidence artifacts.
* Defines and documents business process responsibilities and ownership of the controls. Schedules regular assessments and testing of effectiveness and efficiency of controls.
* Updates security controls and provides support to all stakeholders on security controls covering internal assessments regulations protecting Personally Identifying Information (PII) data and Payment Card Industry Data Security Standards (PCI DSS).
* Experience in internal and external information security risk and exceptions assessments including incidents vulnerability management scans patching status secure baselines and penetration test results.
* Document and report control failures and gaps to stakeholders. Provides remediation guidance and prepares management reports to track remediation activities.
* Strong understanding of ISONIST and CSACCM.
* Certifications in cloud security (e.g. CCSK CCSP) and CISSP/CISM
Required Skills & Qualifications: * Bachelor's degree in Computer Science, Information Technology, or related field. * Implements security controls, risk assessment framework, and program that align to regulatory requirements on Cloud. * Experience in evaluating Information security policies, procedures and standards. * Evaluates risks and develops security standards, procedures, and controls to manage risks. * Implements processes, such as GRC (governance, risk and compliance), to automate and continuously monitor information security controls, exceptions, risks, testing. Develops reporting metrics, dashboards, and evidence artifacts. * Defines and documents business process responsibilities and ownership of the controls. Schedules regular assessments and testing of effectiveness and efficiency of controls. * Updates security controls and provides support to all stakeholders on security controls covering internal assessments, regulations, protecting Personally Identifying Information (PII) data, and Payment Card Industry Data Security Standards (PCI DSS). * Experience in internal and external information security risk and exceptions assessments, including incidents, vulnerability management, scans, patching status, secure baselines and penetration test results. * Document and report control failures and gaps to stakeholders. Provides remediation guidance and prepares management reports to track remediation activities. * Strong understanding of ISO 27001, 27002, NIST and CSA-CCM. * Certifications in cloud security (e.g. CCSK, CCSP) and CISSP/CISM