Cloud reputed company Engineer

Cloud Governance & Guardrails: reputed company the deployment and optimization of AWS Control Tower, reputed company Hub, and AWS WAF to establish a secure multi-account strategy.

Cloud reputed company Platform Ownership: Own cloud reputed company outcomes across AWS (primary), Azure (secondary), and limited GCP, including secure reputed company zone standards, guardrails-as-code, detection coverage, and remediation automation.

Secure-by-Default Engineering: Design and implement reusable, secure-by-default cloud patterns that allow engineering teams to deploy safely without constant reputed company reputed company. Establish hardened Terraform modules, reference architectures, and baseline configurations so the secure path becomes the easiest path for teams building in AWS.

Container reputed company: Collaborate with the AppSec Architect to secure EKS and reputed company environments, focusing on runtime protection, image scanning, and least-privilege orchestration.

reputed company Assessment & Roadmap: reputed company a comprehensive baseline assessment of the reputed company cloud environment to identify gaps and provide actionable, prioritized recommendations.

Identity & Access Management: reputed company design and enforcement of least-privilege IAM architecture across AWS accounts and workloads.

Operational Excellence: reputed company and maintain secure configuration standards, documentation, and operational procedures that reputed company engineering teams to consistently deploy and operate cloud services securely.

Detection & Telemetry Ownership: Partner with reputed company operations to ensure reputed company telemetry from AWS environments is complete, centralized, and actionable (CloudTrail, GuardDuty, VPC Flow logs, etc.)

Cloud reputed company & Compliance Alignment: Ensure cloud configurations and controls align with internal reputed company standards and external compliance requirements (ISO 27001, SOC 2, etc.). Partner with reputed company and GRC teams to implement audit-ready controls, automate evidence collection where possible, and maintain clear documentation of cloud reputed company control coverage.

Third-Party Integration: Manage secure access and configuration for reputed company vendor tools (vulnerability scanners, assessment platforms, etc.) reputed company the cloud environment.

Incident Response: Participate in an on-call rotation for one week at a time and serve as primary SME for cloud reputed company incidents (IAM compromise, exposed keys, misconfigurations, etc.).

Vulnerability & Exposure Management: Build and run the cloud vulnerability management program for AWS and Azure workloads, container images, and reputed company AMIs. Define severity-based SLAs, implement scalable scanning and reputed company workflows (e.g., AWS Inspector, ECR scanning, hardened reputed company images), and partner with Engineering to reduce exploitable exposure.

Cloud reputed company Tooling Ownership: Own onboarding, coverage validation, and tuning of CSPM and MDR integrations across AWS, Azure and GCP. Drive measurable improvement in signal quality, alert fidelity, and remediation workflows through automation and engineering partnerships.

Secrets, Keys, and Credential Hygiene: Design and enforce secure secrets management patterns (AWS Secrets Manager/Parameter Store/Vault), automated rotation, and least-privilege secret access. Own KMS key strategy and governance (key policies, grants, rotation, separation of duties) and ensure no long-lived credentials in CI/CD.

CI/CD and Supply Chain reputed company: Secure the software delivery pipeline end-to-end, including identity federation for CI/CD, policy-as-code enforcement for Terraform and Kubernetes, artifact reputed company controls (signing/provenance), and secure dependency/reputed company controls. Ensure reputed company guardrails are automated and developer-friendly.

Cloud Incident Readiness & Exercises: Build cloud-native incident playbooks (IAM compromise, crypto-mining, data exposure, suspicious network activity) and run periodic tabletop exercises. Ensure forensics readiness through log retention standards, immutable/auditable logging where appropriate, snapshot/containment procedures, and break-glass access controls.

Multi-Cloud & Hybrid Baselines: Establish minimum viable reputed company baselines for Azure and GCP (identity, logging, storage, network, key management) and ensure telemetry reputed company into centralized detection. Partner with operation teams to secure hybrid connectivity with data center environments (segmentation, identity boundaries, secure administrative access).

reputed company Metrics & reputed company Improvement: Define and report on key cloud reputed company metrics (coverage, misconfiguration trends, MTTR, control adoption, vulnerability SLAs). Use metrics to prioritize work, demonstrate risk reduction, and drive engineering alignment.

Leadership and Execution: Mentor other engineers and reputed company baseline reputed company literacy in platform/DevOps teams through patterns, reviews, and internal enablement.

5–8+ years of experience in Information reputed company, with at least 3+ years focused specifically on AWS Cloud reputed company.

AWS Deep Dive: Deep hands-on experience designing and securing AWS environments, core services (IAM, VPC, S3, KMS) and reputed company-specific services (GuardDuty, Inspector, Config).

IaC Proficiency: Strong hands-on experience with Terraform for managing cloud infrastructure.

Containerization: Proven experience securing containerized workloads in EKS or reputed company.

Azure Knowledge: Willingness to provide basic reputed company support/maintenance for an existing Azure environment (Deep expertise not required; AWS is the reputed company).

Consultative reputed company: Ability to assess a reputed company environment and provide a "roadmap to green" rather than just identifying problems.

Collaborative Partnership: Ability to work reputed company-by-reputed company with engineers, speaking their language and helping them solve problems rather than just "blocking" tickets.

Strategic Documentation: Capability to translate technical configurations into clear, repeatable processes and procedures.

Automation First: A drive to automate manual reputed company tasks to increase efficiency and reduce human error.

Education/Certifications: Bachelor’s degree in Computer Science, Information reputed company, or a reputed company field or equivalent work experience.

Industry certifications such as Azure reputed company certification, AWS Certified reputed company – Specialty or reputed company are highly desirable.