Job Description
Job title : Manager - Cloud Security
Experience : 5+ Years
Location : Navi Mumbai
Ideal Candidate Profile – Cloud Security Specialist
Bachelor’s degree in Computer Science, IT, or related field with 5–9 years of hands-on cloud security experience across AWS, Azure, or Google Cloud. Strong expertise in cloud security architecture, IAM, network security, encryption, monitoring, and incident response, including cloud-native tools such as AWS Security Hub, Guard Duty, Azure Security Center, GCP Security Command Center, and Binary Authorization.
Experienced in securing Kubernetes/GKE and containerized environments, Infrastructure-as-Code (Terraform, Cloud Formation, ARM Templates), and integrating security into DevSecOps pipelines. Proficient in Python, Bash, or PowerShell scripting.
Solid understanding of regulatory standards (PCI-DSS, GDPR, SOX), especially in banking and insurance. Strong problem-solving skills and collaborative mindset.
Preferred Certifications: CCSP, CISSP, AWS Security – Specialty, Google Professional Cloud Security Engineer, Microsoft Azure Security Engineer Associate.
Key Responsibilities | Cloud & Cyber Security Leadership
- Lead Cloud Security strategy, architecture, and operations across AWS, Azure, and GCP environments.
- Design and implement secure cloud architectures aligned with banking & insurance regulatory standards (PCI-DSS, GDPR, SOX, HIPAA, IRDAI, CERT-In).
- Define and enforce cloud security policies, standards, governance frameworks, and cyber risk controls.
- Drive Vulnerability & Threat Management programs, Red Team exercises, cyber resilience testing, and digital forensic readiness.
- Oversee IAM, encryption, logging, monitoring, firewall governance, and secure configuration management.
- Lead Cloud Security Posture Management (CSPM), CWPP, CNAPP, container security, application security, VA/PT, secure code & architecture reviews.
- Embed security into DevOps/CI-CD pipelines and automate security controls.
- Conduct risk assessments, threat modeling, compliance reviews, and production security approvals.
- Present security dashboards, risk reports, and action plans to senior management.
- Coordinate audits, regulatory assessments, and ensure proactive compliance adherence.
- Manage vendor partnerships, SLAs, security testing scope, contract negotiations, and multi-stakeholder coordination.
- Research emerging cyber security technologies, define maturity benchmarks, and recommend cost-effective security enhancements.
- Provide technical leadership, cross-functional collaboration, and cybersecurity awareness initiatives.
Core Competencies
Cloud Security Architecture | Cyber Risk Governance | Regulatory Compliance | Security Testing & Assessments | DevSecOps | Vendor Management | Team Leadership | Strategic Planning | Stakeholder Management | Technical Advisory
Interested candidates can share their CV at:
cv.hr@evokehr.com
Directly share or call at 72260 33837
