\n
Responsibilities- Be responsible for designing, developing and operating cloud security technical solutions in accordance with relevant cloud security policies and standards, as well as cloud architecture standards and guidelines.
- Undertake security audits of the company's cloud environment, covering network, configuration, permissions, data, etc., identify security risks and promote their handling.
- Take charge of daily vulnerability management for cloud security.
- Be responsible for the construction of the container security system.
- Develop Key Rotation strategies and promote their implementation.
- Monitor the security status of cloud infrastructure, and cooperate with the technical team to respond to and investigate alerts emphasized by the SOC.
Requirements- Familiar with various AWS services, including IAM, VPC, Security Group, NACL, LB, KMS, Secret Manager, etc.
- Proficient in using tools such as AWS Security Hub, GuardDuty, Inspector, Config, and IAM Access Analyzer to identify issues.
- Familiar with EKS security, such as Pod security policies.
- Skilled in using and operating container security tools like Falco and their rules.
- Familiar with cloud security technologies such as CSPM, CIEM, and CNAPP.
- Have experience in conducting cloud infrastructure risk assessments and vulnerability analysis.
- Have participated in emergency response to cloud security incidents.
- Possess excellent analytical thinking ability and problem - solving skills.
- Have effective time management and organizational abilities.
\n