Senior Security Consultant
Full time
at Claranet India
in
Online
Posted on May 8, 2024
Job details
About The Role Essential Duties & Responsibilities
- Develop the Cloud Security training content emphasizing mainly Azure followed by AWS.
- Develop standard operating procedures and conduct comprehensive training sessions for each technology, ensuring a thorough understanding and adherence to best practices.
- A candidate should be willing to deliver the Cloud Security training in various conference remotely or on-site.
- Conduct research and provide new ideas of the training content, as per the market or latest vulnerabilities or misconfigurations.
- Creating comprehensive training materials, including presentations, labs, and documentation.
- Staying updated with the latest trends and developments in cloud security.
- Customizing content to align with industry best practices and specific client needs.
- Continuously improving and expanding training resources.
- Perform cloud penetration testing to identify vulnerabilities or misconfiguration in the client environment.
- Develop documentation, and a knowledge base to be used by penetration tester to conduct review, security assessments.
- Develop and implement the security solution for the current cloud deployment NSS has.
- Develop standard operating procedures and training for each technology.
- Architect and continuously improve security technology stack, process and procedures, support model and cross-function interactions utilizing automation where possible.
- Develop and report Cloud security coverage metrics.
- Define procedures to validate the effectiveness of the design, deployment, and management of security controls that aim to maintain confidentiality, integrity, and availability of Cloud networks and technology platforms.
- Conduct research to stay up to date with the latest advancements in generative AI, machine learning, and deep learning techniques and identify opportunities to integrate them into our products and services.
- Conduct thorough reviews and assessments of the utilization of Cloud security tooling, ensuring optimal performance and alignment with security objectives.
- Conduct comprehensive penetration tests on various systems, applications, and networks to identify vulnerabilities and weaknesses.
- Prepare detailed reports of findings, including risk assessments and remediation recommendations, tailored to technical and non-technical stakeholders.
- Stay updated with the latest cybersecurity threats and trends and apply this knowledge to enhance testing methodologies.
- Possessing relevant industry certifications, such as Offensive Security Certified Professional (OSCP) or CREST certification, would be advantageous.
- A bachelor’s degree in Cybersecurity, International Security Architecture, or related field; or equivalent work experience in a converged security program.
- 4-7 years of hands-on experience, preferably with at least one major cloud provider such as GCP, Azure, or AWS.
- 2+ years of client-facing consulting work experience performing penetration testing.
- Experience with Infrastructure as code (Vagrant, Docker, Ansible, Chef, Terraform, or similar)
- A deep understanding of industry standards and best practices in Cloud security, including familiarity with CSA CCM, CIS, NIST benchmarks, and more.
- Excellent communication skills (written and verbal) with an ability to explain complex topics in a clear and concise manner to both technical and non-technical audiences.
- Basics to intermediate development and scripting skills in at least one programming language.
- Proven experience in cloud security, including hands-on implementation and management.
- Exceptional communication and presentation skills.
- Strong organizational and time-management abilities.
- Passion for sharing knowledge and facilitating learning.
- Professional certifications in cloud security (e.g., AWS Certified Security - Specialist, Azure Security Engineer).
- Technical knowledge of Kubernetes and Docker technologies and associated security requirements (Kubernetes, Docker, etc.)
- Should have at least one associate-level cloud certification, such as AWS Solutions Architect GCP Associate Cloud Engineer, as a testament to specialized knowledge and expertise.
Apply safely
To stay safe in your job search, information on common scams and to get free expert advice, we recommend that you visit SAFERjobs, a non-profit, joint industry and law enforcement organization working to combat job scams.