Cloud Security Management Specialist

Job description

At Natek we are looking for a Cloud Security Management Specialitst who is experienced in cloud (AWS/Azure/Google Cloud/etc.) and security areas to coordinate related activities.

#LI-PK1

Your responsibilities

  • Active support security strategies implementation for Could transformation programs (GS business unit wide)
  • Coordinate MN DU S Cloud Vulnerability Management and Security Testing Programs
  • Validate and create Vulnerabilities reports for cloud accounts
  • Provide technical guideline for cloud account owners cover implementation mitigation actions against found vulnerabilities
  • Create tactical plans for security controls implementation in cloud computing and virtualization
  • E2E control findings remediation of security vulnerabilities to ensure timely (according agreed SLAs) resolution
  • Translate application security requirements for Infra and Cloud solutions
  • Assessing maturity level of security controls implementation in the hybrid cloud environment
  • Drive security program based on various security standards (mostly ISO27001, CSA Cloud Controls Matrix (CCM), SOC)
  • Drive internal security audits and support customer security validation programs
  • Conduct technical and process-based security assessments for applications and services and recommend remediation actions
  • Develop and iterate security baseline, best practices, processes, and security documentation
  • Support creation of application and infrastructure roadmap creation for cloud processing environment
  • Identify cloud security requirements in the customer’s contracts and translate it to specification of controls which need to be implemented
  • Validate security posture of data processing solutions provided by external vendors (e.g. 3rd part software, SaaS, IaaS)
  • Cooperate with internal security organizations Cyber Security team, HSSE
  • Monitor market security solutions trends and analyses their applicability in MN DU S data processing solutions
  • Contribute in creation of cloud security awareness programs dedicated for application and infra owners
  • Coordinating Vulnerability Scanning address towards Cloud infra components
  • Our requirements

  • Good understanding on security architecture principles, application security standards, application security, testing
  • Very good understanding communication protocols and concepts: HTTP, REST API,
  • Understanding of network technologies related with implementation of virtual routers, firewalls, web application firewalls, reverse proxies
  • Very good understanding databased environment relational, non-relational: MS SQL, My SQL, Postgres, Mongo DB…
  • Very good understanding virtual, cloud structure (Azure, AWS, Google Cloud), microservices, docker platform use to hosting applications
  • Good understanding genesis of most common security variabilities in applications (preferable knowledge about Top Ten Risk by OWASP), infra, cloud solution
  • Practical experience in making can coordination of security programs for cloud and virtualization solutions
  • Analytical and project management skills need to correlate multifactor security assessments for applicants and cloud solutions
  • Knowledge about security architecture models for modern web, mobile application
  • Basic knowledge about programming languages use for web-oriented applications: .NET C#, Java, JS, HTML
  • Benefits

  • Opportunity to work in various projects across 4 countries where we operate
  • Flexible working hours and possibilities of home office 
  • Attractive salary referring to your skills and experience
  • Possibility to choose the type of contract (B2B or Work Agreement) 
  • Private medical healthcare
  • Friendly atmosphere and helpful team
  • Company social events
  • Share this offer:

    You haven’t found the position you were looking for? Create your profile, send us your CV and stay connected!

    Create your profile

    RELATED JOBS: