Objective of job
To safeguard Mercedes-Benz's cloud infrastructure, applications, and data by designing, implementing, and managing robust security strategies, controls, and solutions, ensuring compliance with industry standards and regulations, and proactively mitigating cyber threats to maintain the confidentiality, integrity, and availability of MB cloud-based assets.
-Develop and implement cloud security strategies.
-Assess and mitigate cloud security risks.
-Implement and manage cloud security controls.
-Ensure compliance with relevant regulations.
-Collaborate with cloud team and application teams on security best practices.
-Develop security automation in cloud environments.
-Reducing risk while enabling the business to operate quickly, safely, and efficiently.
-Promoting a security-first culture by acting as a liaison between the security team, cloud team and other departments.
-Enhancing the security posture through innovative solutions and effective collaboration.
-Staying up-to-date with the latest cloud security trends, technologies, and industry developments.
Job designation
•Cloud Security Strategy and Architecture
-Developing and maintaining a comprehensive cloud security strategy aligned with business goals.
-Designing secure cloud architectures and infrastructure.
-Selecting and implementing appropriate security technologies and tools.
•Security Implementation and Operations
-Configuring and managing security controls in cloud environments
-Monitoring cloud environments for security threats and incidents.
-Responding to security incidents and breaches.]
-Staying up-to-date on the latest cloud security threats, technologies, and trends
-Evaluating current and new security products and services
-Conducting research on emerging security threats and vulnerabilities
•Risk Management and Compliance
-Conducting risk assessments and vulnerability assessments of cloud environments.
-Developing and implementing security policies, standards, and procedures
-Ensuring compliance with relevant industry regulations and standards
•Collaboration and Communication
-Collaborating with other IT teams, developers, and business stakeholders.
-Providing security training and awareness to employees.
-Communicating security risks and recommendations to management.
Qualification
•Proven experience in cloud security, with a deep understanding of cloud security principles, technologies, and best practices.
•Experience with cloud security frameworks, such as CSA CCM, NIST, and ISO 27001.
•Experience with cloud platforms such as Azure, AWS, and Ali Cloud
•Relevant certifications, Certified Cloud Security Professional (CCSP), Certified Information Systems Security •Professional (CISSP), AWS Certified Security, Microsoft Certified: Azure Security Engineer, etc.
•Experience with scripting languages (e.g., Python, PowerShell)
•> 5 years experience with focus in areas of cloud operations and cloud security
•Education: Bachelor's degree and above in Computer Science encompassing Information Security