We are seeking a highly skilled and experienced Cloud Security Consultant who will be responsible for the governance strategy and advisory aspects of cloud security. The individual will drive the adoption and continuous improvement of the Cloud Security Framework while overseeing the effective use of CSPM CWP and SSPM platforms across AWS Azure and GCP.
As a Cloud Security Consultant you will play a crucial role in strategic security planning ensuring compliance with industry regulations and frameworks and driving continuous improvement through automation and orchestration.This encompasses managing key performance indicators (KPIs) conducting regular security exercises and collaborating effectively with other IT and security teams to enhance overall security monitoring and response capabilities. The ideal candidate will possess a deep understanding of current and emerging cyber threats and a proven ability to lead and motivate a team in a fast-paced high-pressure environment.
Your primary responsibilities include:
Cloud Security Management and Compliance: Define maintain and enhance the organization’s Cloud Security Framework in alignment with regulatory (e.g. BSP DPA) and industry (e.g. NIST CSA) standards. Provide cloud security governance across multi-cloud platforms (AWS Azure GCP). Oversee baseline and periodic posture assessments and trend analysis reporting. Oversee compliance reporting activities aligned with regulatory frameworks (PCI DSS GDPR NIST CIS).
Cloud Security Optimization: Lead the development tuning and optimization of Prisma Cloud CSPM policies for AWS Azure and GCP. Lead onboarding and security posture policy configuration of the SSPM platform for key SaaS apps.
Threat Intelligence and Continuous Improvement: Design detection strategies and RQL-based investigation playbooks. Oversee CWPP alert tuning and ensure alignment with the client’s governance protocols. Define and regularly tune posture rules and detection logic based on evolving threats. Continuously assess policy relevance against service updates and compliance mandates.
Cross-Team Collaboration: Collaborate with engineering SOC and risk/compliance teams to ensure policy enforcement and incident response readiness. Provide technical guidance to engineers conducting audit log analysis threat hunts and RCA activities.
Incident Management and Communication: Track and report on key cloud security KPIs metrics and control effectiveness. Review and refine policies standards SOPs and guidelines related to cloud operations. Lead knowledge transfer sessions.
Technical Requirements:
* More than 5 years in cloud security consulting architecture or posture management.
* Proven and extensive experience with Prisma Cloud (CSPM/CWPP) and SSPM platforms.
* Hands-on experience integrating alerts into SIEM/SOAR tools like Google SecOps.
* Familiar with cloud-native and hybrid environment architecture in AWS Azure or GCP
* Familiar with compliance frameworks: NIST CSF CIS GDPR PCI DSS.
* Experience integrating alerts and posture signals into SIEM/ITSM (e.g. Chronicle Splunk ServiceNow)
Soft Skills:
* Strong analytical and problem-solving abilities with keen attention to detail.
* Excellent communication and collaboration skills with the ability to interact effectively with stakeholders at all levels.
* Capable of managing multiple priorities in a fast-paced dynamic environment.
Certifications: CCSP GCSA CISSP CRISC CISA AWS/Azure/GCP Security Specialty ( or any cloud platform-specific certs) Prisma Cloud Certification (e.g. Palo Alto Networks Certified Cloud Security Engineer-PCCSE) Google Cybersecurity Professional Certificate or SIEM-specific trainings (e.g. Chronicle)