Job Overview

we are looking for an experienced cloud security engineer. the ideal candidate will play a critical role in overseeing all aspects of cloud security and governance initiatives at head digital works.

roles & responsibilities:

• security architecture review: review and assess the security architecture of cloud-based systems and applications to identify gaps and recommend improvements in alignment with industry best practices and regulatory requirements.

• understand the amazon identity management ecosystem holistically and create a secure infrastructure, enforce compliance with iam principals including least privilege access, password management, audit logging, rbac, user account lifecycle, certificate management and system authentication solutions(sso/federation).

• cloud compliance management: ensure cloud environments adhere to relevant compliance standards and regulations by implementing appropriate security controls, conducting compliance assessments, and generating compliance reports.

• cloud security governance: establish and maintain cloud security governance frameworks, policies, and procedures to ensure consistent and effective management of security risks across cloud environments.

• incident response: actively participate in incident response activities related to cloud security incidents, including investigation, containment, eradication, and recovery.

• cloud security tooling: evaluate, select, deploy, and manage security tools and technologies specifically designed for cloud environments, such as cloud access security brokers (casbs), cloud workload protection platforms (cwpps), and cloud-native security services. tools like prisma cloud, orca security, etc.

• cloud security automation: develop and implement automation scripts and workflows to streamline security operations tasks, such as configuration management, vulnerability scanning, and incident response orchestration.

• cloud risk assessment: conduct risk assessments of cloud services, configurations, and deployments to identify and prioritize security risks, and collaborate with relevant teams to mitigate identified risks.

• cloud security research and innovation: stay abreast of emerging threats, vulnerabilities, and security trends in cloud computing, and actively engage in research and innovation to enhance the organization's cloud security posture.

• lead remediation for findings from cspm (cloud security posture management), work with developers on targeted remediation based on prioritization.

• partner with soc team for security incident management and remediation triage with engineering across the ecosystem.

• collaborate with cross-functional teams to integrate security best practices into the development and deployment processes.

requirements and qualifications:

• bachelor's or master's degree in computer science, information security, or related field is must.

• 7-11 years of proven experience in securing cloud infrastructure roles.

• proficiency in security-compliance, cloud and infrastructure security.

• strong understanding of security principles and best practices.

• knowledge of industry-standard security frameworks and regulations.

• solid understanding of amazon web services (aws) including vpc, elb, iam, kms, ec2, s3, cloudtrail, cloudformation, etc

• understanding of security frameworks and standards like owasp & nist

skills and abilities

• excellent communication and interpersonal skills.

• ability to analyze complex systems and identify security risks.

• strong problem-solving skills and attention to detail.

• up-to-date knowledge of industry trends and emerging threats.

if you are passionate about securing real money games and have a proven track record in risk and compliance, we invite you to apply for this challenging and rewarding role. join us in shaping the future of responsible gaming!