Key Responsibilities:
* Cloud Security Management:
* Monitor, secure and optimize AWS environments, ensuring alignment with industry, best practices and internal definitions.
* Collaborate with other teams.
* Manage Cloud Security Posture Management (CSPM) tools, such as Sysdig or comparable solutions.
* Risk and Compliance:
* Perform regular risk assessments, vulnerability scans and security audits.
* Implement and enforce compliance with GRC frameworks and regulatory standards (CIS, NIST and others).
* Tool and Automation Integration:
* Develop and maintain automation scripts using Python and policy-as-code with Rego to enhance security posture.
* Incident Response and Analysis:
* Participate in incident response efforts and conduct forensic investigations as required.
* Proactively identify and mitigate potential security threats in cloud