Cloud/Infrastructure Security Engineer

Key Responsibilities:

• Support the design and implementation of secure configurations across cloud platforms including AWS, GCP, and Azure.
• Implement and manage cloud security controls such as IAM policies, security groups, web application firewalls, and other built-in security services.
• Contribute to securing hybrid infrastructure environments by implementing best practices around network segmentation, encryption, and access control.
• Harden containerized environments such as Kubernetes and Docker and ensure secure configuration of virtual machines and operating systems.
• Define and maintain baseline security standards for applications, servers, and network infrastructure.
• Conduct periodic cloud security reviews to identify vulnerabilities or misconfigurations and support remediation initiatives.
• Integrate security checks within CI/CD pipelines using tools for static and dynamic analysis and dependency vulnerability scanning.
• Develop automation scripts using Python or Bash to streamline security operations and contribute to infrastructure as code using Terraform or CloudFormation.
• Implement monitoring and logging solutions for cloud environments using tools such as CloudTrail, GuardDuty, and centralized SIEM platforms.
• Support incident response activities by analyzing logs, performing initial triage, and assisting in security investigations.
• Assist in preparing documentation and evidence for security audits and compliance requirements including ISO 27001 and SOC 2.
• Collaborate with engineering and DevOps teams to promote secure design practices for large-scale OTT platforms handling sensitive data.
• Stay updated on emerging cloud security threats and contribute to implementing security controls relevant to streaming platforms and CDN infrastructure.