Lead Engineer - Cloud Security (Cyber Security Office)

Perform reviews, and security control assessment of security operations based on company policy and in accordance to agreed schedules.

Implement security policies, standards, and guidelines for cloud environments.

Recommend, review, and implement new security features as they become available to cloud platforms

Perform security infrastructure health-checks and analyze trending of security patterns.

Harness native tools within the cloud provider space and support other security teams to investigate suspicious and malicious activity.

Provide feedback and advice to project team on improving security posture of the supported project environments.

Evaluate potential solutions and make recommendations to resolve business problems.

Create response procedures and document security processes and procedures.

Maintain security posture of the project as a KTLO security engineer.

Support activities such as application deployments, technology refreshes and system patching. Out-of-hours support will be required at certain times to support maintenance windows and off-hours activities (patching and upgrades).

Assist with establishing procedures for handling potential security incidents.

Provide status updates during the life cycle of an incident.

Support the maintenance and update of business recovery/contingency plans and/or procedures.

Stay up-to-date with the latest cloud security trends, threats, and technologies.

Provide training and support to team members on cloud security best practices.

Assist in compliance audits and ensure adherence to regulatory requirements.

• Perform reviews, and security control assessment of security operations based on company policy and in accordance to agreed schedules.
• Implement security policies, standards, and guidelines for cloud environments.
• Recommend, review, and implement new security features as they become available to cloud platforms
• Perform security infrastructure health-checks and analyze trending of security patterns.
• Harness native tools within the cloud provider space and support other security teams to investigate suspicious and malicious activity.
• Provide feedback and advice to project team on improving security posture of the supported project environments.
• Evaluate potential solutions and make recommendations to resolve business problems.
• Create response procedures and document security processes and procedures.
• Maintain security posture of the project as a KTLO security engineer.
• Support activities such as application deployments, technology refreshes and system patching. Out-of-hours support will be required at certain times to support maintenance windows and off-hours activities (patching and upgrades).
• Assist with establishing procedures for handling potential security incidents.
• Provide status updates during the life cycle of an incident.
• Support the maintenance and update of business recovery/contingency plans and/or procedures.
• Stay up-to-date with the latest cloud security trends, threats, and technologies.
• Provide training and support to team members on cloud security best practices.
• Assist in compliance audits and ensure adherence to regulatory requirements.

• At least 3-5 years' of experience in the Security Operations field (preferred)
• Strong knowledge and experience in End User Computing, Server, and Network concepts and operations
• Strong experience in cloud-native security platforms and services from AWS and/or Azure
• Strong knowledge of endpoint protection (Crowdstrike)
• Strong Interpersonal and communication skills
• Good understanding of patch management for OS and security products (Palo Alto, Fortinet, RedHat, Windows, RHEL)
• Good understanding of security frameworks and standards (e.g., NIST, ISO 27001, CIS).
• Familiarity with security tools and cloud technologies (e.g., NGFWs, SIEM, GuardDuty, Cloudwatch, Defender for Cloud
• Familiarity with vulnerability assessment tools and techniques (Tenable, Crowdstrike)
• Cybersecurity certification is a plus, including but not limited to (Fortinet, Palo Alto, CISSP, CCSP, ITIL)
• Familiarity with CI/CD concepts and automation tooling (Jenkins, Azure DevOps, Ansible, AWS Cloudformation) is a plus
• Familiarity with container security and orchestration tools (e.g., Kubernetes, Docker)