DevSecOps | Cloud Security Architect (Remoto)

We are looking for a DevSecOps to join the team of one important client.

If you want to enrich your career in this area and are looking for a company that invests in your career, apply for this opportunity.

•        Cloud Infrastructure Security (AWS & Azure):

•        Extensive experience in securing cloud infrastructure in AWS and Azure, including designing secure environments with proper network segmentation (VPC, subnets, VPNs)

•        Advanced configuration and security of core cloud services like EC2, RDS, S3 in AWS, and VMs, Storage Accounts, SQL Databases in Azure to ensure they are hardened and compliant with best practices.

•        Active Directory & Identity Management:

•        Migrating on-premise AD to Azure AD and AWS Directory Service, ensuring secure user authentication and Single Sign-On (SSO) across both cloud and on-premise resources.

•        Windows Infrastructure Security:

•        Deep experience securing Windows Server environments, both in on-premise data centers and in the cloud (AWS EC2, Azure VMs), implementing security hardening baselines and managing patch management with tools like Azure Automation Update Management.

•        Network Security & Segmentation:

•        Hands-on experience with configuring and securing cloud network infrastructure, including Security Groups, NACLs, VPC Peering, and VPN Gateways in AWS, and NSGs, Azure Firewall, Application Gateway, and Private Link in Azure.

•        Security Monitoring & Incident Response:

•        Utilization of AWS Security Hub, GuardDuty, CloudTrail, and Azure Security Center, Azure Sentinel, and Log Analytics to establish a comprehensive security monitoring and alerting solution.

•        Ability to quickly detect, investigate, and remediate security events, with strong expertise in establishing incident response playbooks for cloud environments.

•        Compliance & Regulatory Frameworks:

•        Experience implementing security controls in accordance with industry standards such as ISO 27001, GDPR, and CIS best practices, leveraging tools like AWS Config, AWS Audit Manager, Azure Policy, and Compliance Manager to ensure compliance and security best practices.

•        Data Protection & Encryption:

•        Expertise in securing sensitive data using encryption at rest and in transit for AWS (S3, EBS, RDS) and Azure (Storage, SQL Database, Key Vault).

•        Configuring AWS KMS and Azure Key Vault for key management and implementing encryption solutions in both cloud-native and hybrid environments.

Certifications:

•        AWS Certified Security Specialty

•        Microsoft Certified: Azure Security Engineer Associate

- Integration in a dynamic and motivated team for the performance of the function.

- Complementary training

- Salary package according to the function performed

- Professional evolution