Job/Responsibility Profile:
• OS Automation, OS Scripting, Patching Automation (Linux and Windows servers) in the cloud at scale.
• Configure and manage cloud security tools such as encryption, identity and access management, logging, and auditing.
• Analyze and investigate security alerts and incidents using SIEM/SOAR platforms, investigate and provide timely response and resolution.
• Identify and remediate cloud misconfigurations and compliance issues using automation and scripting.
• Develop and update cloud security policies, standards, and guidelines based on Industry standards.
• Participate in incident response activities, including investigations, root cause analysis, and remediation efforts.
• Monitor cloud environments for security breaches, unauthorized access, and other security incidents, and respond promptly to mitigate risks.
• Support cloud customers through cloud-native architecture guidance, security architecture guidance, policy remediations, etc.
• Work with ITSM functions (Change management, Incident management, Problem management, Request management) as they apply to tools and platforms used by the team
• Design and develop multi-tenant solutions for enabling cloud platform as service
• Deploy and Operate multi-cloud security solutions/platforms at Enterprise scale
• Develop end-to-end technical solutions in security space
• Develop self-service solutions to onboard customers and manage users on the platforms
• Assess the customers' security architecture, requirements and provide guidance
• Design and develop policies to improve security posture and prevent threat exposure
• Identify and adapt modern tools, principles and technologies to improve security across cloud landscape
• Support cloud customers through cloud-native architecture guidance, security architecture guidance, policy remediations, etc.
• Work with ITSM functions (Change management, Incident management, Problem management, Request management) as they apply to tools and platforms used by the team
Technical Skills/Experience:
• Experience with AWS & Azure - Hands-on experience architecting & administering with at least one and working knowledge of the other. (GCP knowledge/exposure is a plus)
• Strong knowledge of cloud security concepts, principles, and best practices
• Good understanding of OS fundamentals (Windows or Linux) and OS security principles
• Experience in cloud security - in AWS or Azure (GCP experience is a plus)
• Experience working with IaC tools such as Terraform, CloudFormation, or ARM templates.
• Hands-on experience with Linux and Windows patching and hardening
• Hands-on experience with SIEM/SOAR technologies.
• Experience with analyzing security logs such as Cloud Trail, VPC Flow Logs, S3 Access Logs, Azure Activity Logs, NSG Flow Logs, Storage account logs.
• Hands-on experience with cloud security tools such as AWS Security Hub, Azure Security Center, or GCP Security Command Center
• Proficient in scripting languages such as Python or Bash
• General experience working within ITSM processes (Change, Incident, Problem, Request management) in an Enterprise context
• Certifications such as AWS Certified Security Specialty, Azure Security Engineer Associate, or GCP Professional Cloud Security Engineer are a plus
• Experience working in DevOps/GitOps teams
• Experience developing Infrastructure and Operations code, Platforms, and Automations
• Experience across full solution lifecycle - Design, Develop, Implement, Operationalize, & Operate
• Understanding of all the basic services provided by CSPs (AWS, Azure and GCP)
• Knowledge and hands-on experience of interacting with CSP APIs
• Deep knowledge of IAM, Policies, Network and other security services
o Authoring IAM policies
o Authoring Organization Policies
o Developing private network based applications (using private endpoints, Vnet integrations, IPSec)
• Developing Git Pipelines for managing platforms and operations
• Experience in Java Springboot/Python/GoLang development
• Experience in developing SAML, OAuth based applications
• Experience working with IaC tools such as Terraform, CloudFormation, or ARM templates.
• Experience in K8s development
• General experience working within ITSM processes (Change, Incident, Problem, Request management) in an Enterprise context
• Certifications such as AWS Certified Security Specialty, Azure Security Engineer Associate, or GCP Professional Cloud Security Engineer are a plus
Notes :- All qualified applicants will receive consideration for employment without regard to race, color, religion, religious creed, sex, national origin, ancestry, age, physical or mental disability, medical condition, genetic information, military and veteran status, marital status, pregnancy, gender, gender expression, gender identity, sexual orientation, or any other characteristic protected by local law, regulation, or ordinance.
Benefits : Danta offers a compensation package to all W2 employees that are competitive in the industry. It consists of competitive pay, the option to elect healthcare insurance (Dental, Medical, Vision), Major holidays and Paid sick leave as per state law.
The rate/ Salary range is dependent on numerous factors including Qualification, Experience and Location.
