Job description
Location: Bangalore / Pune
Experience: 5- 8 Years
Notice Period: Immediate to 30 Days
CTC: 15 LPA to 20 LPA
Education Qualification: Bachelor's Degree in any stream
We are looking for a strong and knowledgeable Cloud Native Security Consultant to join our team. The ideal candidate should understand the emerging security practices and standards in a Multi-Cloud environment. Additionally, the candidate should be able to consult, engineer and apply security best practices while designing and proposing solutions to our enterprise customers.
Should be able to conduct vulnerability analysis, identify security gaps, identify integration issues, study architecture/platform and design on Cloud security architecture. A Cloud Native Security Consultant undertakes complex work at a high-risk level, often working on several projects. If you are the right fit for this post, send your resume to us and apply now!
Knowledge and Skills Required:
- Hands-on experience with Cloud Native Application protection CNAPP Tools (Prisma Cloud by Palo Alto, Checkpoint Cloud Guard, Aqua Security)
- Hands-on experience with Automation Tools (e.g., Ansible, Chef, Puppet)
- Experienced with Application migration from Monolithic to Microservices Architecture
- Knowledge of Web Application Firewall implementation experience at Kubernetes and API Gateway
- Experience with implementation of Vulnerability scanner and Container Image repository hardening
- In-depth understanding of AWS, AZURE, GCP offered services (EKS, AKS, GKE)
- Understanding and review of Infrastructure as Code (IaC), Compliance as Code (CaC)
- Updated with trends and participation in industry-recognized forums (e.g., Cloud Native Computing Foundation)
- Experienced with deliverables on Cloud Security Posture Management, Cloud Workload Protection, Cloud Infra Entitle Management, Serverless Security
- Good written & verbal communication and analytical skills are required.
- Excellent documentation skills and problem-solving skills are a must.
- A minimum of 3 years of working experience in Cyber Security Consulting or Advisory is required.
- The candidate must have successfully delivered at least 2 (two) Cyber Security consulting and implementation projects as a consultant in recent years (2 years).
Responsibilities
- Collaborate with teams to build & deliver solutions implementing serverless, microservices-based, IaaS, PaaS and containerized architecture of the multi-cloud environment.
- Develop rule base and parameterized IaC templates for automated deployment using Terraform.
- Build CI/CD Pipeline using AWS (CodeBuild, CodeDeploy, CodePipeline), Google (Cloud Build), Azure (DevOps, Pipelines)
- Integrate 3rd party tools with CICD Process (e.g. SonarQube, CheckMarx, Embold)
- Config Manage environment using industry-standard DevOps tools (Ansible)
- Implement scripting to extend the build\deployment\monitoring process (PowerShell, Bash, Python)
- Ability to develop IaC with Terraform
- Strong understanding of Cloud Networking
- The candidate must have detailed knowledge of Container, Microservices, Docker, and Kubernetes security.
- Network Security Orchestration on Microservices environment
- Secure Microservice Communication, Secure Authentication to Common DB without API/password/sharing keys
- Technical documentation, Product evaluation, POC
- Implementation, Migration and Architect of Security Technology and Solution
- DevOps, DevSecOps and SRE (site reliability Engineering) mindset.
- Interact with senior stakeholders across departments.
- Reach and influence a wide range of people across larger teams and communities.
- Research and apply innovative security architecture solutions to new or existing problems and be able to justify and communicate design decisions
- Be Updated with Cloud security and emerging technology trends.
- Be ready to research open source and proprietary DevOps/DevSecOps tools in a multi-cloud environment.
- Be aware of the Cloud Service provider's native Cloud tooling and security enhancement projects.
- Lead the technical design of systems and services.
Certification:
Preferred Certification: (Certification should be valid)
- GIAC Cloud Security Automation (GCSA)
- Certified Kubernetes Security Specialist (CKS)
- Certified DevSecOps Professional (CDP)
- KUBERNETES AND CLOUD NATIVE ASSOCIATE (KCNA)
- OEM Certification on CNAPP security products (e.g., Palo Alto Prisma, Checkpoint Cloudguard, Aqua Security etc.)
- Cloud Service Provider Security Certificates (e.g., SC-100, AWS Certified Security-Specialty, GCP Professional Cloud Security Engineer)AWS Certified Security-Specialty
What We Offer:
- Career and competence support.
- Clearly defined career paths
- Personal Accident Policy
- Paid Maternity Leave and Paternity Leave
- Employee Assistance Program
- Gratuity
- Relocation Assistance
- Open Door Policy
- Disability Income Protection