Job Description

Position - Cloud Security ConsultantExperience & Background

  • 8–10 years of hands-on experience in cybersecurity, with at least 5+ years focused on cloud security operations.
  • Bachelor’s or Master’s degree in Computer Science, Information Security, Engineering, or related discipline.
  • Proven experience securing workloads in AWS, Azure, and/or Google Cloud environments.

    • Technical Skills

  • Strong practical knowledge of cloud-native security services such as:
  • AWS Security Hub, GuardDuty, CloudTrail, KMS
  • Azure Defender, Sentinel, Key Vault, Microsoft Entra ID
  • Google Cloud SCC, IAM, KMS
  • Strong understanding of:
  • Cloud networking, segmentation, routing, firewalls, WAF, IDS/IPS, Zero Trust network controls.
  • Identity & Access Management (IAM), RBAC, least-privilege models, and privileged access enforcement.
  • Hands-on experience with:
  • Cloud configuration reviews and posture management (CSPM)
  • Workload protection platforms (CWPP/XDR)
  • SIEM-based monitoring and detection logic creation
  • Proficiency in scripting (Python, PowerShell, Bash) for automation, reporting, and process enhancement.
  • Familiarity with DevSecOps concepts and CI/CD security integrations.
  • Experience using Infrastructure-as-Code (e.g., Terraform, CloudFormation, Bicep) for secure deployment and guardrail automation.

    • Threat & Detection Expertise

  • Ability to perform cloud threat modelling and visualize attacker paths.
  • Experience in proactive threat hunting using cloud telemetry and MITRE ATT&CK (including cloud matrices).
  • Capable of designing detections, improving alert fidelity, and responding to cloud-based threats in real time.

    • Operational Responsibilities

  • Experience performing:
  • Cloud incident response
  • Security monitoring and analysis
  • Root cause assessments
  • Post-incident improvements
  • Ability to continuously evaluate risks, remediate control gaps, and manage configuration hygiene across cloud accounts and subscriptions.

    • Data Protection & Compliance

  • Strong understanding of:
  • Encryption, tokenization, KMS/HSM, key rotation policies.
  • Data residency and data classification in cloud environments.
  • Knowledge of leading global frameworks and compliance standards such as:
  • ISO
  • NIST CSF
  • CSA Cloud Controls Matrix
  • PCI DSS
  • GDPR (preferred)

    • Soft Skills & Professional Competencies

  • Ability to translate complex technical risks into business-level insights and executive reports.
  • Strong communication and collaboration skills, able to work with DevOps, Engineering, SOC, and business stakeholders.
  • Continuous learning mindset with strong awareness of emerging threats, cloud trends, and evolving technologies.

    • Preferred Certifications (not mandatory)

  • CCSP
  • CCSK
  • AWS Certified Security Specialty
  • Azure Security Engineer
  • GCP Professional Cloud Security Engineer

    • Apply for this Position

    Ready to join ? Click the button below to submit your application.

    Submit Application