← Усі вакансії

Cloud Architect — Security & Guardrails (AWS/Azure)

Go interactive
Формат:
повний remote
Джерело:
jobs.dou.ua
Відгукнутись на вакансію →

Що робити

  • Cloud Security Guardrails & Governance: Design and enforce automated security baselines and preventative guardrails across AWS and Azure using tools like AWS Organizations, Service Control Policies (SCPs), Azure Policy, and landing zones.
  • SIEM & Logging Engineering: Architect and optimize multi-cloud log aggregation strategies. Engineer seamless telemetry pipelines from AWS (CloudTrail, GuardDuty) and Azure (Activity Logs, Defender) into centralized SIEM platforms (e.g., Microsoft Sentinel, Splunk) for real-time correlation and alerting.
  • EDR & Workload Protection: Strategy and deployment oversight for Endpoint Detection and Response (EDR) and Cloud Workload Protection Platforms (CWPP) across multi-cloud virtual machines, containers, and serverless environments.
  • Vulnerability & Posture Management: Implement and manage Cloud Security Posture Management (CSPM) and Vulnerability Management workflows. Operationalize continuous scanning for misconfigurations, OS-level vulnerabilities, and container images, establishing automated remediation playbooks.
  • Identity & Access Security: Architect strict Zero-Trust frameworks, implementing robust Identity and Access Management (IAM) governance, Just-In-Time (JIT) access, and Privileged Access Management (PAM) integrations.

Що очікуємо

  • Multi-Cloud Architecture: Deep architectural knowledge of security services and infrastructure configurations within both AWS and Azure.
  • SecOps Toolkit Expertise: Direct experience engineering and tuning enterprise SIEM solutions, deploying EDR/XDR agents at scale, and managing enterprise vulnerability scanning suites.
  • Automated Policy-as-Code: Strong proficiency in implementing cloud governance tools (Azure Policy, AWS Control Tower) and secure Infrastructure as Code (Terraform) utilizing static security analysis.
  • Threat & Incident Context: Solid understanding of modern attack vectors, the MITRE ATT&CK framework, and how cloud misconfigurations translate into operational security risks.
  • Collaboration: Ability to serve as the core technical liaison between Cloud Infrastructure teams, Compliance/Audit units, and the SOC.

Схожі вакансії

З блогу Trackr

Усі статті →

Знайдено через trackr.help/jobs · Канал: @trackrhelp · Бот для персональних сповіщень: @trackrhelpBot