Lead Cloud Security Engineer
About the job
Summary
Head Digital Works seeks an experienced Lead Cloud Security Engineer to oversee all aspects of cloud security and governance. Responsibilities include security architecture review, IAM management (least privilege, password management, RBAC, etc.), cloud compliance management, governance framework establishment, incident response, security tooling (CASBs, CWPPs, Prisma Cloud, Orca Security), automation script development, risk assessment, and threat research. The role requires collaboration with various teams (SOC, engineering, development) and strong problem-solving skills. The ideal candidate will have 5-6 years of experience securing cloud infrastructure and a deep understanding of AWS services.
Must have:
- Security Architecture Review
- AWS expertise (VPC, IAM, etc.)
- Cloud Compliance Management
- Incident Response
- Cloud Security Tooling
- Automation Scripting
- Risk Assessment
- Collaboration with cross-functional teams
Not hearing back from companies?
Unlock the secrets to a successful job application and accelerate your journey to your next opportunity.
We are looking for an experienced cloud security engineer. The ideal candidate will play a critical role in overseeing all aspects of cloud security and governance initiatives at Head Digital Works.
Roles & Responsibilities:
• Security Architecture Review: Review and assess the security architecture of cloud-based systems and applications to identify gaps and recommend improvements in alignment with industry best practices and regulatory requirements.
• Understand the Amazon identity management ecosystem holistically and create a secure infrastructure, Enforce compliance with IAM principals including least privilege access, password management, Audit logging, RBAC, user account lifecycle, certificate management and system authentication solutions(SSO/Federation).
• Cloud Compliance Management: Ensure cloud environments adhere to relevant compliance standards and regulations by implementing appropriate security controls, conducting compliance assessments, and generating compliance reports.
• Cloud Security Governance: Establish and maintain cloud security governance frameworks, policies, and procedures to ensure consistent and effective management of security risks across cloud environments.
• Incident Response: Actively participate in incident response activities related to cloud security incidents, including investigation, containment, eradication, and recovery.
• Cloud Security Tooling: Evaluate, select, deploy, and manage security tools and technologies specifically designed for cloud environments, such as cloud access security brokers (CASBs), cloud workload protection platforms (CWPPs), and cloud-native security services. Tools like Prisma Cloud, Orca Security, etc.
• Cloud Security Automation: Develop and implement automation scripts and workflows to streamline security operations tasks, such as configuration management, vulnerability scanning, and incident response orchestration.
• Cloud Risk Assessment: Conduct risk assessments of cloud services, configurations, and deployments to identify and prioritize security risks, and collaborate with relevant teams to mitigate identified risks.
• Cloud Security Research and Innovation: Stay abreast of emerging threats, vulnerabilities, and security trends in cloud computing, and actively engage in research and innovation to enhance the organization's cloud security posture.
• Lead Remediation for findings from CSPM (Cloud Security Posture Management), work with developers on targeted remediation based on prioritization.
• Partner with SOC team for Security Incident Management and Remediation triage with Engineering across the ecosystem.
• Collaborate with cross-functional teams to integrate security best practices into the development and deployment processes.
Requirements and Qualifications:
• Bachelor's or Master's degree in Computer Science, Information Security, or related field is must.
• 5-6 years of proven experience in securing cloud infrastructure roles.
• Proficiency in Security-Compliance, Cloud and Infrastructure Security.
• Strong understanding of security principles and best practices.
• Knowledge of industry-standard security frameworks and regulations.
• Solid understanding of Amazon Web Services (AWS) including VPC, ELB, IAM, KMS, EC2, S3, CloudTrail, CloudFormation, etc
• Understanding of security frameworks and standards like OWASP & NIST
Skills and Abilities
• Excellent communication and interpersonal skills.
• Ability to analyze complex systems and identify security risks.
• Strong problem-solving skills and attention to detail.
• Up-to-date knowledge of industry trends and emerging threats.
If you are passionate about securing real money games and have a proven track record in risk and compliance, we invite you to apply for this challenging and rewarding role. Join us in shaping the future of responsible gaming!
View Full Job Description
About The Company
We are one of India's oldest online skill-gaming companies that develop and operate zeal-driven applications for online gaming enthusiasts. With more than 60 million+ users and multiple brand verticals like A23 Rummy, A23 Poker A23 Games and Cricket.com, Head Digital Works has come a long way in the past 17 years. What started from a small garage in 2006 with nothing but a dream - "To become India's leading online gaming portal" has now turned into one of the most profitable start-ups in India that have gone through cycles of angel, venture capital and private equity investments.
We're a diverse group of thinkers and doers who are reimagining what's possible to make it easier for all of us to do what we love in new ways.
Similar Jobs
(On-Site)
(Remote)
(Hybrid)
(On-Site)
(On-Site)
Similar Skill Jobs
(On-Site)
(On-Site)
(On-Site)
(Hybrid)
(Remote)
(On-Site)
(Hybrid)
(On-Site)
Jobs in Hyderabad, Telangana, India
(On-Site)
(On-Site)
(Hybrid)
(On-Site)
(Hybrid)
(On-Site)
(Hybrid)
Cyber Security Jobs
(On-Site)
(On-Site)
(On_site)
(Hybrid)
(Remote)
