• Collaborate with Technology Teams: Guide business and technology teams to understand and implement firm control requirements across diverse cloud architectures.
• Threat and Vulnerability Analysis: Use specialized tools to analyze, correlate, and interpret potential threats, assessing vulnerabilities based on their probability and impact.
• Enhance Information Risk Strategy: Support the development and execution of a comprehensive, long-term risk and control strategy to secure information assets in the public cloud.
• Deliver Risk-Based Threat Models: Develop and provide threat models and risk assessments to ensure secure technology controls for cloud services, platforms, and architectural components.
• Perform Infrastructure-as-Code Security Reviews: Conduct security assessments on infrastructure-as-code to enhance cloud platform security.
• Develop Preventive and Detective Controls: Create controls to enforce security requirements and ensure effective protection against emerging threats.
• Integrate with Security Operations and Threat Intelligence: Collaborate with the broader security teams to ensure seamless integration with security operations, threat intelligence, access management, and network security.
• Develop Security Automation: Design and implement automated security monitoring, alerting, and remediation processes using AWS security tools and automation services.
• Cloud Incident Response and Forensics: Lead incident response processes for cloud-related security incidents, including root cause analysis, mitigation, and documentation.
• Manage Identity and Access Controls: Design and enforce robust identity and access management policies and controls, applying least privilege and just-in-time access principles.
• Conduct Security Audits and Compliance Checks: Perform periodic security audits and compliance checks aligned with industry standards (e.g., NIST, ISO 27001, GDPR).
• Implement Data Protection and Encryption: Ensure data protection policies, including encryption at rest and in transit, are applied effectively across cloud platforms.
• Evaluate New Security Technologies: Research, evaluate, and recommend emerging security technologies and practices to strengthen cloud security posture.

Formal Training or Certification in Security: Minimum of 3 years’ experience with formal training or certification in security or software engineering concepts.Cloud Security and Architecture: Proven experience in developing and architecting secure solutions within public cloud technologies.Threat Modeling and Vulnerability Assessment: Skilled in threat modeling, vulnerability discovery, and penetration testing.AWS Security Tools Expertise:AWS Identity and Access Management (IAM),AWS Security Hub ,AWS Guard Duty , AWS Config ,AWS CloudTrail, AWS KMS (Key Management Service),AWS Shield and AWS WAF,Amazon Macie,AWS Inspector, AWS Control Tower, AWS Organizations and Service Control Policies (SCPs),CloudWatch and CloudWatch Logs. Infrastructure as Code (IaC): Experience in secure engineering using IaC tools like Terraform, CloudFormation, or AWS CDK.Security Automation Skills: Experience with automating security tasks using scripting languages (e.g., Python, Bash) or AWS automation tools (e.g., Lambda).Incident Response: Hands-on experience managing and responding to security incidents, particularly in a cloud environment.Agile and DevOps Methodologies: Strong understanding of DevOps, CI/CD, application resiliency, and security best practices.Communication Skills: Ability to convey complex security concepts clearly to technical stakeholders at all levels.Analytical and Problem-Solving Skills: Strong analytical skills to address security challenges effectively with both technical and non-technical stakeholders.Cloud Native Experience: Hands-on experience with AWS, Azure, Google Cloud, or Oracle Cloud.