Cloud Security Engineer

Summary

The job is for a Cloud Security Professional at Zeta, a Next-Gen Banking Tech company. The role involves implementing cloud security initiatives, improving cloud security posture, and overseeing the planning and coordination of cloud security. The company has over 1700+ employees across multiple global locations.

Requirements

• Solid understanding of public cloud technologies with hands-on technical knowledge of at least one major public cloud like AWS, Azure etc
• Experience of CI/CD Pipeline implementation and at least one tool (Jenkins, ArgoCD, Bitbucket Pipelines etc)
• Experience in at least one scripting language (Bash, Python, Java etc)
• Experience containerization and Kubernetes
• Experience of automating and templating security processes and documentation for compliance purposes
• Hands on experience of vulnerability assessments, Penetration Testing, Web Application Security, data privacy, identify access management etc
• Experience of at least 2 active and passive security tooling (OWASP ZAP, Veracode, Checkmarx, Fiddler etc)
• Experience on Infrastructure as Code solution (Terraform, Ansible, Chef etc)
• Conduct Architecture and Design review to provide guidance and security assurance around best practices and frameworks
• Work closely with the DevOps teams and share security insight
• Knowledge of development practices using Java and Nodejs, Docker, Kubernetes and other container orchestration services
• Experience with Secure Code Quality Tools, Testing and Techniques - ZAP, Wireshark, Sonarqube, Metasploit etc
• Understanding of security frameworks, controls and processes - CIS, NIST, PCI/DSS. SOCI/II, etc
• Medium experience in one or more languages - NodeJS, GoLang, Python, Perl, Ruby, Bash, Javascript, Java etc
• Ability to document risks, security controls and evidence to ensure compliance

Responsibilities

• Implement cloud security initiatives for entire organization
• Improve Cloud security posture and Kubernetes security using CI/CD
• Provide support in detection and mitigation of cyber security vulnerability and incidents for Cloud
• Prepare and present reports of Vulnerability Assessment, Automation, Penetration Testing etc
• Oversee the planning and coordination of Cloud security
• Deploy, Maintain and Support Log Aggregation, Vulnerability and Threat Detection Solutions with associated visualizations so that real-time identification of issues can be performed

Preferred Qualifications

Experience with security tools like Prisma, Aqua, Clair, Hashicorp Vault, etc

Benefits

Equal Opportunity employer, celebrating diversity and committed to creating an inclusive environment for all employees