Informacje o stanowisku

Role: Cloud Security Engineer

Location: Krakow/Warsaw, Poland

Hybrid

German Speaking is a must – Looking for C1 speaker

1. Main scope is to monitor, remediate, and support Cloud security posture management in multicloud environments.
2. Have working experience in CNAPP platform Sysdig for asset discovery, compliance report configuration, issue raising, and ticket management from the CNAPP console for the workflow incident.
3. Able to create dashboard CSPM CDR vulnerability report in the Sysdig platform and triage for security events.
4. Having knowledge on creating monitoring and suppressing alert mechanism in the CNAPP Sysdig platform.
5. Able to troubleshoot any agent connectivity issue and upgrade the agent to the latest Sysdig agent version.
6. Able to hunt and create queries for threat analysis in the Sysdig environment.
7. Able to create and fine-tune threat response policy, compliance policy, and vulnerability policy in the Sysdig platform.
8. Analyze all the alerts raised in the cloud Native hyperscaler and non-native cloud security controls and remediate.
9. Raise necessary tickets to resolve any issue by addressing the right team and following up to remediate the incident.
10. Follow the ITSM process to raise or resolve the ticket assigned by or assigned to the cloud security team.
11. Do proactive analysis on the cloud environment and suggest any advance fix for any vulnerability.
12. Generate weekly/monthly cloud assessment report and share it with the client, and plan for the remediation task. Assign the remediation task to the respective team.
13. Should have working knowledge on the security framework like CIS, NIST, ISO, CMMI, and MITRE ATT&CK controls, and knowledge on cyber compliance like GDPR, PCI DSS, HIPAA, HITRUST, FISMA, SOX, and CCPA.
14. Should have cloud-related benchmark knowledge like CIS Microsoft Azure Benchmark, CIS Azure Kubernetes Benchmark, CIS AWS Benchmark, CIS Amazon EKS Benchmark, CIS Docker Benchmark, CIS GCP Benchmark, and CIS GKE benchmark to map the cloud assessment and provide remediation plan.
15. Preparing incident report and sharing it at regular intervals.
16. Create weekly/monthly status report and share it with the client.
17. Create and lead COC call with all the relevant stakeholders for any P1 ticket or major incident and follow it to closure. Create the necessary RCA document for the high critical ticket.
18. Update the SOP document and any lesson learned document if any.
19. Responsibilities:
20. Monitor and remediate end-to-end on the cloud environment in scope for the customer account/subscription. Handle the activity individually or along with the support team and assign the right team from the Sysdig platform.
21. Analyze the missing security controls, if any, in our scope and take proactive measures to evaluate the effectiveness of the existing security control and to find the security gap.
22. Senior team member of Cloud Security engineering who is responsible for leading the support team and creating a support roster document. Also to maintain and plan support resource on daily basis and handover process.
23. Would be responsible for cloud security incidents across the subscription.
24. Work with stakeholders mentoring and providing technological guidance on cloud security incidents and remediation.
25. Follow all the ITIL processes.
26. Prioritization planning of projects and features, stakeholder management, and tracking of external commitments.
27. Respond to and assist with due diligence and internal/external security audit requests.
28. Supports implement incident solution and standard configuration and change management processes and practices.
29. Identify opportunities for further enhancements and refinements to security standards and processes.
30. Minimum Bachelor’s engineering degree in a technical field such as computer science, computer engineering, or any relevant degrees. Professional Experience alongside graduation.
31. Must possess at least one or more core cloud security certifications namely AZ-500, SC-200, SC-300, AZ-104, AWS SAA (Solution Architect Associate), Professional AWS Security Specialty, GCP CDL, GCP Security Certification, CCSP, CCSK, or any CNAPP certification.

Kraków - Oferty pracy w okolicznych lokalizacjach