Cloud Security Administrator

Overview: The Cloud Security Administrator plays a crucial role in safeguarding our organization’s digital assets stored and managed in cloud environments. The Cloud Security Administrator will be responsible for maintaining and enhancing the security posture of the organization’s IT infrastructure, systems, and applications. The individual will collaborate with IT and other departments to ensure compliance with security policies, standards, and industry regulations. Position Functions and Responsibilities: • Cloud System Architecture: Design, deploy, and manage Azure infrastructure solutions, including virtual machines, virtual networks, storage accounts, and Azure Active Directory • Cloud Network Architecture: Design, deploy and manage Meraki cloud infrastructure solutions, ensuring security confiugrations align with best practices and compliance standards • Cloud Security Architecture: Design and maintain the organization’s cloud security architecture, ensuring that it aligns with established best practices and compliance standards • Access Management: Implement and manage identity and access management (IAM) policies, including user roles, permissions, and multi-factor authentication, to ensure that only authorized personnel can access sensitive data and system. • Data Protection: Apply encryption and data masking to safeguard information in transit and at rest within the cloud Monitor data flows to prevent unauthorized data exfiltration or leakage • Threat Detection and Response: Deploy cloud-native and third-party security tools to monitor for suspicious activity, malware, and intrusion attempts. Respond rapidly to security incidents, conduct forensic investigations, and coordinate remediation efforts • Compliance and Auditing: Ensure cloud configurations and processes comply with relevant laws, regulations, and standards (such as GDPR, HIPAA, PCI DSS, ISO 27001). Conduct regular audits and risk assessments to evaluate security posture • Security Policy Development: Draft, update, and enforce policies regarding AI, cloud usage, data handling, and access protocols. Serve as a subject matter expert on cloud security policy for internal teams • Vulnerability Management: Perform regular vulnerability scans and penetration tests in cloud environments. Track vulnerabilities and ensure timely patching and remediation • Security Awareness Training: Educate staff and users on cloud security best practices, AI, social engineering threats, and proper incident reporting procedures • Collaboration: Work closely with IT teams, cloud architects, Network and System admins, and business stakeholders to integrate security controls throughout cloud adoption and migration projects • Incident Documentation: Maintain comprehensive records of security incidents, investigations, and remediation steps for compliance and continuous improvement purposes • Continuous Improvement: Stay abreast of evolving cloud technologies, security threats, and regulatory requirements. Propose and implement improvements to existing security frameworks and technologies • Artificial Intelligence: Implement data protection guardrails within AI workflows to safeguard sensitive information. • Disaster recovery: Work with leadership to document and maintain an enterprise risk log documenting critical risk considerations arising from business operations, regulatory findings and/or audit follow up Day-to-Day ActivitiesMonitor cloud security dashboards and alerts for unusual activity. • Review and update user access rights and permissions. • Research and deploy new security tools and solutions. • Conduct vulnerability scans and coordinate patch management. • Collaborate with IT and cloud infrastructure teams for secure cloud deployments. • Document incidents, investigations, and audit results. • Provide guidance and support to internal teams on security best practices. • Prepare security and compliance reports for management. Required Qualifications and Skills: • 3-5+ years of experience in information security, IT administration, or cloud computing roles Bachelor’s degree in Computer Science and/or equivalent experience • Experience implementing and managing security controls in multi-cloud or hybrid cloud environments. • Proven track record of responding to and resolving security incidents. • Hands-on experience with cloud security architecture and operations. • Excellent problem-solving skills, attention to detail, and ability to work independently or as part of a team Supervisory Responsibility: • This position has no supervisory responsibility but may necessitate to take lead on projects Work Environment/ Physical Demands • While performing the duties of the job, the employee regularly works in an office setting. • Ability to lift 10-50 pounds when necessary. • This position will require overtime on a regular basis and is an essential job function. Job Type: Full-time Pay: $100,000.00 - $120,000.00 per year Benefits: • 401(k) • 401(k) matching • Dental insurance • Employee assistance program • Employee discount • Flexible schedule • Health insurance • Paid time off • Professional development assistance • Retirement plan • Vision insurance Application Question(s): • What tools or frameworks have you used to monitor and respond to cloud-based threats? • Walk us through how you would design a secure Azure infrastructure for a new application. • How have you implemented multi-factor authentication in a hybrid cloud environment? • How do you ensure compliance with frameworks like HIPAA, PCI DSS, or ISO 27001? • How do you stay current with evolving cloud technologies and security threats? • Were you referred to this position by anyone? if so, could you please provide their name? Education: • Bachelor's (Preferred) Ability to Commute: • Los Angeles, CA 90071 (Preferred) Work Location: In person