We are seeking an expert in cloud security to integrate security into our products and platforms from the outset.
Job Summary
Promote a 'Shift Left' security approach by incorporating security principles into early development stages, ensuring secure and innovative digital solutions.
Focus on cloud security with emphasis on Azure, application security, and DevSecOps practices.
Main Responsibilities:
- Conduct cloud and application security assessments, gap analysis, and recommend remediations.
- Perform code reviews, API security checks, and configuration reviews (Azure, AWS).
- Collaborate with DevOps teams to integrate SAST, DAST, IAST tools into CI/CD pipelines.
- Review security of containers, WAF rules, microservices, and infrastructure.
Requirements:
- Minimum 4 years of experience in information security, with at least 3 years in cloud-native environments.
- Strong expertise in Azure cloud security; knowledge of AWS/GCP desirable.
- Hands-on experience with tools like Azure Security Center, Burp Suite, Nessus, Checkmarx, Kubernetes, Docker, Jenkins, GitHub, OpenShift.
- Proven skills in application security (code review, IAST, SAST, DAST).
- Relevant certifications (CISSP, OSCP, CEH, CCSK/CCSP, Azure/AWS/GCP security certifications).
Benefits:
- Ongoing training and professional development opportunities.
- Chance to work with a talented team of professionals.
- Opportunity to make a meaningful contribution to the organization's success.