- Company Name
- Bright Vision Technologies
- Job Title
- Cloud Security Engineer
- Job Description
-
Job Title: Cloud Security Engineer
Role Summary:
Design, implement, and maintain secure cloud environments across AWS, Azure, and GCP platforms. Lead cloud security architecture, posture management, monitoring, and incident response, integrating DevSecOps practices and IaC.
Expactations:
- 3–5+ years of hands‑on experience in cloud security, IAM, network security, and vulnerability management.
- Proven track record of securing multi‑cloud infrastructures with strong DevSecOps and IaC skills.
- Demonstrated ability to manage security tools (SIEM, CSPM, encryption/key management) and respond to incidents.
- Solid coding proficiency for infrastructure scripts (Terraform, Python, Bash).
- Strong analytical aptitude, communication skills, and adaptability in fast‑moving environments.
Key Responsibilities:
- Architect and deploy IAM policies, role-based access controls, and least‑privilege models across AWS, Azure, and GCP.
- Configure and manage CSPM tools and SIEM platforms (Splunk, Sentinel) for continuous monitoring.
- Develop and maintain Terraform modules, Docker images, and Kubernetes manifests enforcing security hardening.
- Conduct vulnerability assessments, patch management, and threat hunting in cloud environments.
- Participate in DevSecOps pipeline design, integrating security checks into CI/CD workflows.
- Coordinate incident response activities, including forensic analysis, containment, and remediation.
- Produce security documentation, compliance reports, and risk assessments for stakeholders.
Required Skills:
- Cloud platforms: AWS (security services, VPC, IAM, KMS), Azure (Azure Security Center, AAD), GCP (Cloud Armor, IAM).
- Security tools: Splunk, Sentinel, CSPM, Honeycomb, Nessus, Qualys.
- IaC and configuration: Terraform, ARM templates, Bicep, CloudFormation.
- Container & orchestrator security: Docker, Kubernetes (K8s hardening, RBAC).
- Networking: VPN, VPC, subnets, security groups, NSGs.
- Scripting/Programming: Python, Bash, PowerShell.
- Operations: Incident response, log management, encryption/key management, vulnerability scanning.
- Methodologies: Agile, DevOps, DevSecOps, secure SDLC.
Required Education & Certifications:
- Bachelor’s degree in Computer Science, Information Security, or related field.
- Professional certifications preferred:
- AWS Certified Security – Specialty or equivalent
- Azure Security Engineer Associate (AZ-500)
- Google Professional Cloud Security Engineer
- Certified Information Systems Security Professional (CISSP) or Certified Cloud Security Professional (CCSP)
- Kubernetes Security Specialist (KNOTS) or similar.
Minneapolis, United states
Remote
09-02-2026