Security Specialist (Network & Infrastructure) (Remote)

As a Security Specialist focusing on Network & Infrastructure, your primary responsibility will be to ensure the security and resilience of the cloud-based infrastructure and network components supporting our product. You will assess, design and implement security controls to protect cloud assets, networks, and data while ensuring the availability, scalability and performance of the infrastructure. Core Responsibilities:

• Evaluate and select appropriate security services, features, and configurations offered by the cloud service provider (Azure) to secure cloud infrastructure components such as virtual machines, networks, storage and databases.
• Implement and configure cloud security controls and mechanisms, including IAM, network security groups, encryption, logging, monitoring and compliance services.
• Conduct security assessments and audits of cloud infrastructure deployments to identify misconfigurations, vulnerabilities and compliance gaps and implement remediation measures.
• Design and implement network security architectures and controls to protect cloud-based networks, data flows and communication channels against unauthorized access, interception and manipulation.
• Configure and manage virtual private clouds, subnets, routing tables, firewall rules, VPN connections and other network security components to enforce segregation, isolation and traffic filtering between different network segments and environments.
• Perform network traffic analysis, packet inspection and intrusion detection to detect and respond to network security incidents, anomalies and attacks.
• Integrate IAM solutions with identity providers (IdPs), such as Active Directory, LDAP, or SAML, for centralized user authentication and authorization across cloud services and applications.
• Monitor and audit IAM activities, authentication events and access attempts to detect and investigate unauthorized access attempts, account compromises, and insider threats.
• Develop and maintain incident response plans, procedures and playbooks for cloud security incidents, breaches and service disruptions, including escalation paths, communication protocols and recovery strategies.
• Implement backup, replication and failover mechanisms to ensure data integrity, availability and recoverability in the event of cloud service outages, data loss, or ransomware attacks.
• Leverage cloud-native security automation tools, APIs and scripting to automate deployment, configuration and management of security controls and compliance checks.

• Bachelor's or Master's degree in Information Security, Computer Science, or related field.
• Minimum 5 years of experience in cloud security and infrastructure roles, with a focus on securing cloud-based environments (e.g., AWS, Azure, GCP), networks and virtualized infrastructure.
• Proficiency in cloud security services, technologies and best practices, including IAM, VPC, security groups, encryption, key management, logging and monitoring.
• Strong understanding of network security principles, protocols and technologies, such as TCP/IP, DNS, VPN, SSL/TLS, firewalls, intrusion detection/prevention systems (IDS/IPS) and DDoS mitigation.
• Experience with security compliance frameworks and standards (e.g., NIST, CIS, ISO 27001) and regulatory requirements (e.g., GDPR, HIPAA, PCI DSS) applicable to cloud environments.
• Hands-on experience with cloud security assessment tools, vulnerability scanners and penetration testing methodologies to identify and remediate security risks and vulnerabilities.
• Proficient in scripting and automation languages (e.g., Python, PowerShell) for automating security tasks, deployment and configuration management in cloud environments.
• Excellent analytical, problem-solving and communication skills, with the ability to collaborate effectively with cross-functional teams, articulate technical concepts to non-technical stakeholders and drive security initiatives to completion.