Cloud Security Specialist

We are seeking a proactive Cloud Security Specialist with a minimum of 3 year's experience in AWS. The ideal candidate will be well-versed in implementing and monitoring robust security controls across cloud environments. Additional experience with Azure and / or GCP is highly desirable. A strong understanding of GRC frameworks along with CIS and NIST standards is essential. Fluency in both Spanish and English is required.

Key Responsibilities :

• Cloud Security Management :

Monitor, secure and optimize AWS environments, ensuring alignment with industry best practices and internal definitions.

• Collaborate with other teams.
• Manage Cloud Security Posture Management (CSPM) tools, such as Sysdig or comparable solutions.
• Risk and Compliance :

Perform regular risk assessments, vulnerability scans and security audits.

• Implement and enforce compliance with GRC frameworks and regulatory standards (CIS, NIST and others).
• Tool and Automation Integration :

Develop and maintain automation scripts using Python and policy-as-code with Rego to enhance security posture.

• Incident Response and Analysis :

Participate in incident response efforts and conduct forensic investigations as required.

• Proactively identify and mitigate potential security threats in cloud.

Required Qualifications :

• At least 3 years of hands-on experience with AWS security implementations.
• Solid understanding of cloud security principles, GRC frameworks and compliance standards such as CIS and NIST.
• Bilingual proficiency in Spanish and English, both written and verbal.
• Demonstrated ability to work in a dynamic, fast-paced environment while collaborating with cross-functional teams.

Desirable Qualifications :

• Experience with additional cloud platforms like Azure and / or GCP.
• Familiarity with CSPM tools (e.g., Sysdig) or equivalent solutions.
• Advanced knowledge of Excel.
• Practical experience with Python scripting and Rego for policy definition and automation.
• Experience with Infrastructure as Code (IaC) tools (e.g., Terraform, CloudFormation) and container orchestration (e.g., Kubernetes).
• Knowledge of security monitoring tools, SIEM, IDS / IPS, and threat modeling methodologies.
• Understanding of DevSecOps practices and integration of security within continuous delivery pipelines.

Key Skills and Competencies :

• Technical Expertise : Deep knowledge of cloud architecture, security best practices and automation tools.
• Proactivity : Demonstrated initiative in identifying vulnerabilities, suggesting improvements and implementing preventive measures.
• Analytical Thinking : Strong problem-solving skills with the ability to perform detailed risk assessments and implement effective mitigation strategies.
• Communication : Excellent communication skills to effectively articulate security risks and collaborate with diverse teams.
• Adaptability : Ability to stay updated with emerging cloud security trends and adapt quickly to new technologies and threats.
• Attention to Detail : A meticulous approach to policy implementation, incident management and compliance auditing.

This role offers the opportunity to work within a forward-thinking team dedicated to securing cloud environments and driving innovation in cloud security practices. If you are passionate about cloud security and meet the qualifications, we invite you to apply and join our team.

J-18808-Ljbffr