This position is based in Johannesburg.
We’re recruiting for the role of Cloud Security Engineer. This person will be responsible for designing, implementing, and governing cloud security controls across cloud environments. This role ensures secure adoption of cloud technologies by embedding security into architecture, operations, and delivery pipelines while driving continuous improvement of the organization’s cloud security posture.
Duties and Responsibilities:
- Conducting security reviews and securing all public cloud assets and any systems hosted therein
- Ensuring all cloud instances are regularly scanned for security vulnerabilities and insecure configurations, and ensuring all public cloud systems are appropriately hardened
- Ensuring comprehensive logging and monitoring coverage aligned with security requirements and risk appetite
- Maintaining and supporting various public cloud cyber security systems and tools, including but not limited to Cloud Security Posture Management (CSPM), Cloud-Native Application Protection Platform (CNAPP), firewalls, Web Application Firewalls (WAF), Intrusion Prevention Systems (IPS), Intrusion Detection Systems (IDS) and logging solutions
- Leading and co-ordinating the deployment and assurance of artificial intelligence (AI) tools for cloud security
- Acting as the Security Lead in the configuration, management and upgrade of cloud security systems and technology systems
- Providing technical leadership and escalation support for complex cloud security incidents and platform issues
- Ensuring all new and existing systems, products and services comply with security policies, standards and industry best practices
- Designing and implementing cloud security architectures aligned with best practices to protect cloud environments
- Collaborating with development and operations teams to integrate security throughout the cloud development lifecycle (DevSecOps)
- Improving cloud security posture through initiatives including but not limited to cloud security baselines, cloud posture management and hardening
- Leading cloud security automation including Infrastructure as Code (IaC) security and policy as code
Minimum Requirements:
- Degree in Electrical Engineering, Computer Science, Information Technology or equivalent technology-related degree
- At least one certification in Cloud Security: preferably Azure Cloud security
- At least one professional Information Security Qualification such as CISSP, CISM, CISA, CCSK
- Certifications in the use and administration of cloud security tools such as CSPM, CNAPP, EDRs, NSGs, DDIS, WAF, DevOps security etc.
- Experience with Kubernetes, containers, and Terraform is highly valued for managing secure cloud environments
- Advanced experience in cloud native security technologies
- Minimum of 3 years’ hands-on Public Cloud Security experience
- Working knowledge and experience in DevOps and Microservices technologies
- Experience in Identity and Access Management and data protection
- Experience in Threat detection and incident response in cloud
- Experience working with cross-functional and distributed teams
- Excellent communication skills and team player
- Excellent project and time management skills (getting things done in a timely manner)
- Excellent report writing and presentation skills