· Over 5 years of experience in Information Security
• At least 2 years of direct experience in one of the Public Cloud platforms, such as AWS or Azure with strong knowledge of their security features.
• Ability to identify and drive remediation of public and hybrid cloud risks
• Experience in general security technologies, processes, and concepts.
• Industry-recognized security certifications (OSCP, CISSP, CISA, CEH, AWS Security, etc.).
• Working experience on SIEM / Analytics tools, eg: Securonix, Sentinel
• Working experience with common security operations systems, Intrusion Detection Systems (IDS/IPS), Security Incident Event Management systems (SIEM), anti-virus log collection systems, etc
• Strong analytical and problem-solving skills, with the ability to identify and address security risks and vulnerabilities
• Working knowledge of security systems and programs
• Ability to analyze and develop innovative recommendations and solutions.
• Sound fundamental knowledge of Internet technologies, such as TCP/IP, HTTP, SSL, DNS, OWASP Top10, and web servers (e.g. Apache, IIS, Nginx, etc.).
• Experience with web security concepts and technologies such as web application firewalls, and proxy.
• Familiarity with AWS technologies, such as CodePipeline, CodeBuild, CodeDeploy, CodeStar, Guardrails, Amazon ECS, AWS Lambda, and Open-source tools like Jenkins, DefectDojo, and OWASP Glue will be an added advantage.
· Excellent verbal and written communication skills
