Job Overview
We are looking for a Cloud Security Engineer to monitor, remediate, and support cloud security posture management in multi-cloud environments. The ideal candidate will have hands-on experience with CNAPP platforms, particularly Sysdig, to ensure compliance, manage vulnerabilities, and enhance cloud security controls.
Key Responsibilities
Cloud Security Monitoring & Incident Management
* Monitor & Remediate cloud security posture in multi-cloud environments .
* Utilize Sysdig CNAPP platform for asset discovery, compliance reporting, and workflow incident management .
* Create dashboards, CSPM (Cloud Security Posture Management), CDR (Cloud Detection & Response), and vulnerability reports in Sysdig.
* Triage security events, analyze cloud security alerts, and implement necessary remediation actions.
* Troubleshoot agent connectivity issues and upgrade to the latest Sysdig agent versions .
* Threat Hunting & Analysis : Create queries for threat detection and fine-tune threat response policies.
Incident Handling & Compliance
* Analyze security alerts in cloud-native and non-native security controls and take remediation actions.
* Raise and track ITSM tickets, ensuring incidents are assigned to the correct teams and resolved efficiently.
* Generate weekly / monthly cloud security assessments and remediation plans.
* Maintain compliance with security frameworks (CIS, NIST, ISO, CCMM, MITRE ATT&CK) and cyber regulations (GDPR, PCI-DSS, HIPAA, HITRUST, FISMA, SOX, CCPA) .
* Map cloud assessments to CIS cloud benchmarks (AWS, Azure, GCP, Kubernetes, Docker) and provide remediation plans.
Reporting & Documentation
* Prepare incident reports, weekly / monthly security status updates, and RCA (Root Cause Analysis) documents .
* Conduct COC (Call of Coordination) meetings with stakeholders for major security incidents.
* Maintain and update SOPs (Standard Operating Procedures) and lessons learned documentation.
Leadership & Stakeholder Management
* Act as a senior member of the Cloud Security Engineering team, guiding support teams and managing resource planning .
* Mentor and provide technical guidance to stakeholders on cloud security incidents and remediation .
* Follow ITIL processes and best practices in security incident response.
* Work closely with internal and external auditors for security due diligence and compliance .
* Identify opportunities for enhancing cloud security standards and processes .
Required Qualifications & Skills
Technical Skills & Experience
Cloud Security & CNAPP : Hands-on experience with Sysdig CNAPP platform for monitoring, compliance, and security incident management.
Threat Detection & Incident Response : Ability to troubleshoot security issues, manage cloud security incidents, and conduct threat hunting .
Compliance & Frameworks : Strong knowledge of cloud security benchmarks, CIS compliance, and regulatory requirements (GDPR, PCI-DSS, HIPAA, etc.) .
Monitoring & Reporting : Experience in creating dashboards, compliance reports, and vulnerability reports .
Multi-cloud Environments : Experience with AWS, Azure, and GCP security configurations and controls .
Scripting & Automation (Preferred) : Familiarity with Terraform, Python, or PowerShell for security automation.
Certifications (Preferred, but not mandatory)
* Microsoft : AZ-500 (Azure Security Engineer), SC-200, SC-300, AZ-104
* AWS : AWS Certified Security – Specialty, AWS Solutions Architect (Associate / Professional)
* Google Cloud : GCP Cloud Security Certification, GCP CDL
* Industry Certifications : CCSP, CCSK
* CNAPP-specific Certifications : Any relevant Sysdig or CNAPP certification
Educational Background
Bachelor’s degree in Computer Science, Cybersecurity, Information Security, or a related technical field. Equivalent professional experience may be considered.
Why Join Us?
* Work remotely from Germany.
* Opportunity to work with cutting-edge security tools in multi-cloud environments.
* A dynamic, collaborative team with opportunities for career growth and certifications .
* Exposure to global security frameworks and compliance regulations .
If you meet the qualifications and are passionate about cloud security and compliance, we encourage you to apply!
#J-18808-Ljbffr