Itss-Cloud Security Consultant Jobs

Job Title

ITSS-Cloud Security Consultant

Relevant Experience

(in Yrs)

6-10 yrs

Technical/Functional Skills

• Ability to work independently and as part of a team.
• Familiarity with ARM templates for policies and initiatives.
• Strong analytical, problem solving, and communication skills.
• Knowledge of cloud security concepts tools and best practices for Azure, GCP and AWS
• Understanding of network security data protection and access management principles
• Experience in implementation of Azure built-in and custom policies to secure approved cloud services
• Proficiency and security monitoring auditing and reporting tools.
• Experience with Azure DevOps Pipelines
• Familiarity with relevant industry standards frameworks and regulations such as HIPAA, HITECH, NIST, ISO 27001 and cloud specific security best practices.
• Experience and risk assessment, vulnerability assessment and incident response in both on premise and cloud environments
• Relevant certifications (e.g., CompTIA, Security+, CISSP, CCSP, AWS Certified Security - Specialty, Microsoft-certified Azure Security Engineer Associate or Google Cloud Professional Security Engineer) are a plus but not required.

Experience Required

• Bachelor’s degree in information technology, Computer Science, Cybersecurity or a related field
• A minimum of 6 years of experience and information security with a focus on cloud security for Azure GCP and AWS preferably in a healthcare or insurance setting

Roles & Responsibilities

• Participate in risk assessments vulnerability assessments and incident response activities to identify potential threats and areas for on premise and cloud environments.
• Contribute to security awareness training initiatives and assist in promoting a culture of information security across the organization with an emphasis on cloud security best practices.
• Collaborate with cross functional teams to integrate information security principles and best practices into business processes and systems including cloud environments.
• Design and implement Azure Cloud Security framework based on Azure Cloud Security Benchmark, Azure Security Best Practices and CIS Microsoft Azure Foundations Benchmark.
• Assist in the development implementation and maintenance of information security policies procedures and guidelines including cloud security policies for Azure, GCP and AWS in accordance with industry best practices regulatory requirements and the companies risk appetite.
• Provide support to the information security manager and other team members on various security related projects and initiatives as needed including cloud security projects
• Responsible for ADO pipelines used to Implement policy exemptions.
• Responsible for ADO pipelines used to deploy the policies and remediation tasks.
• Develop proactive controls to deny users from creating non-compliant resources in the cloud
• Assist in monitoring auditing and reporting on the effectiveness of information security controls policies and procedures across on premise and cloud environments.
• Keep abreast of industry trends regulatory changes and emerging threats to ensure that the company's information security policies including cloud security policies remain current and effective.