Senior Cloud Security Engineer

SPOC: Mrignayani Jayram
Role: Senior Cloud Security Engineer
Primary Skills: MS Defender, TrendMicro ScanMail, Microsoft Defender for Identity & MDCA
Location: Warsaw/Krakow, Poland
Employment Type: Permanent, B2B
Experience: 3 to 8 Years
Work Mode: Hybrid (2 days a week in office)
Language: English and German (B2 level minimum)

Job Description

• Experience in TrendMicro ScanMail MS defender for Identity & MDCA
• Experience in implementing the security controls in the cloud (AWS, GCP, Azure)
• Main scope is to monitor remediate and support Cloud security posture management in multi-cloud environments
• Have working experience in CNAPP platform Sysdig for asset discovery compliance report configuration issue and raising ticket from the CNAPP console for the workflow incident
• Able to create dashboard CSPM CDR vulnerability report in the Sysdig platform and triage for security events
• Having knowledge on creating monitoring and suppressing alert mechanism in the CNAPP Sysdig platform
• Able to trouble shoot any agent connectivity issue and to upgrade the agent to the latest Sysdig agent version
• Able to hunt and create queries for threat analysis in the Sysdig environment
• Able to create, fine-tune threat response policy compliance policy vulnerability policy in the Sysdig platform
• Analyze all the Alert raised in the cloud Native hyperscale Nonnative cloud security controls and remediate
• Raise necessary ticket to resolve any issue by addressing to the right team and follow up to remediate the incident
• Follow the ITSM process to raise or resolve the ticket assigned by or assigned to the cloud security team
• Do proactive analysis on the cloud environment and suggest any advance fix for any vulnerability
• Generate weekly, monthly cloud assessment report and share it to the client and plan for the remediation task Assign the remediation task to the respective team
• Should have working knowledge on the security framework like CISNISTISOCCMMITRE ATTCK controls and knowledge on cyber compliance like GDPR PCIDSS HIPAA HITRUST FISMA SOX and CCPA
• Should have cloud related benchmark knowledge like CIS Microsoft Azure Benchmark CIS Azure Kubernetes Benchmark CIS AWS benchmark CIS Amazon EKS Benchmark CIS Docker benchmark CIS GCP Benchmark CIS GKE benchmark CIS Kubernetes Benchmark to map the cloud assessment and provide remediation plan
• Preparing incident report and sharing it on regular interval
• Create weekly, monthly status report and share it to client
• Create and lead COC call with all the relevant stake holder for any P1 ticket or major incident and follow it to closure Create the necessary RCA document for the high critical ticket
• Update the SOP document and any lesson learn document if any