Cloud security Consultant
warszawa
Recruitments:
At least 4 years of experience in IT Security is required
Good English written/verbal communication skills (C1)
Deep architectural knowledge in the area of leading cloud providers are needed (Azure, AWS nice to have Ali Cloud); hybrid/multi-cloud integration knowledge would be highly appreciated
Demonstrated understanding of IT Security domains: security and risk management, asset security, security architecture and engineering, communications and network security, identity and access management, security assessment, and testing
Experience with Github: security settings, features, and security risks for the service
Knowledge about Landing Zone aspects and Infrastructure-as-
Code (IaC) for AWS/AZURE and security services related to it
Experience with containers eg. EKS, AKS, and Docker for AWS and Azure cloud
Hands-on experience in DevSecOps, SSDLC, CI/CD security pipeline would be of great advantage
Knowledge of IT security frameworks and standards is required (ISO2700x, CIS Benchmarks, NIST, Well Architecture Frameworks for AWS/AZURE)
Completed certification in on or more enlisted cloud security paths: CCSK by CSA, AZ-500 by Microsoft, SCS-C01 by AWS
Cross-sectional knowledge of the basics of security technology is required: CNAP/CNAPP, SIEM, SOAR, IDAM, DLP, IAM, PIM/PUM, BDS; hands-on experience with the usage or deployments of at least one of those would be of great advantage
Good presentation skills to provide clear and supportive information to non-technical audiences
Ability to work autonomously and to lead tasks assigned from the beginning to the end
Being able to work with many tasks at the same time
Good team skills, open to other cultures
Responsibilities:
Designing security architecture for cloud deployments, minimum safeguards, introducing security baselines (mostly Azure, AWS)
Supporting internal stakeholders in any affair concerning cloud security topics
Providing deep technical advisory to internal IT teams to follow the best cloud security practices
Deploying and maintaining native and 3rd party security products in cloud environments, especially CNAPP/CSPM/CWPP
Conducting risk, network, and vulnerability evaluations against defined security requirements
Contributing to the compliance evaluations against internal and external regulations that touch cloud deployments
Support internal IT teams in implementing security requirements and security good practices
Contributing to the Danone technology communities in building a common knowledge base on cyber security/information security
Participation in the evaluation of cloud products (PaaS, SaaS, IaaS)
Researching for latest cloud security threats, analyzing the current situation and providing feedback for internal cloud security knowledge base. Provide the solutions or workarounds to mitigate the risks