Job Description
Job title
: Manager - Cloud Security
Experience
: 5+ Years
Location :
Navi Mumbai
Ideal Candidate Profile – Cloud Security Specialist
Bachelor’s degree in Computer Science, IT, or related field with 5–9 years of hands-on cloud security experience across AWS, Azure, or Google Cloud. Strong expertise in cloud security architecture, IAM, network security, encryption, monitoring, and incident response, including cloud-native tools such as AWS Security Hub, Guard Duty, Azure Security Center, GCP Security Command Center, and Binary Authorization.
Experienced in securing Kubernetes/GKE and containerized environments, Infrastructure-as-Code (Terraform, Cloud Formation, ARM Templates), and integrating security into DevSecOps pipelines. Proficient in Python, Bash, or PowerShell scripting.
Solid understanding of regulatory standards (PCI-DSS, GDPR, SOX), especially in banking and insurance. Strong problem-solving skills and collaborative mindset.
Preferred Certifications:
CCSP, CISSP, AWS Security – Specialty, Google Professional Cloud Security Engineer, Microsoft Azure Security Engineer Associate.
Key Responsibilities | Cloud & Cyber Security Leadership
Lead Cloud Security strategy, architecture, and operations across AWS, Azure, and GCP environments.
Design and implement secure cloud architectures aligned with banking & insurance regulatory standards (PCI-DSS, GDPR, SOX, HIPAA, IRDAI, CERT-In).
Define and enforce cloud security policies, standards, governance frameworks, and cyber risk controls.
Drive Vulnerability & Threat Management programs, Red Team exercises, cyber resilience testing, and digital forensic readiness.
Oversee IAM, encryption, logging, monitoring, firewall governance, and secure configuration management.
Lead Cloud Security Posture Management (CSPM), CWPP, CNAPP, container security, application security, VA/PT, secure code & architecture reviews.
Embed security into DevOps/CI-CD pipelines and automate security controls.
Conduct risk assessments, threat modeling, compliance reviews, and production security approvals.
Present security dashboards, risk reports, and action plans to senior management.
Coordinate audits, regulatory assessments, and ensure proactive compliance adherence.
Manage vendor partnerships, SLAs, security testing scope, contract negotiations, and multi-stakeholder coordination.
Research emerging cyber security technologies, define maturity benchmarks, and recommend cost-effective security enhancements.
Provide technical leadership, cross-functional collaboration, and cybersecurity awareness initiatives.
Core Competencies
Cloud Security Architecture | Cyber Risk Governance | Regulatory Compliance | Security Testing & Assessments | DevSecOps | Vendor Management | Team Leadership | Strategic Planning | Stakeholder Management | Technical Advisory
Interested candidates can share their CV at :
cv.hr@evokehr.com
Directly share or call at
72260 33837
