Deliver high-quality client services across cloud security audits, risk assessments, and architecture reviews in AWS, Azure, and GCP environments.
Execute control testing for identity and access management, encryption and key management, logging and monitoring, and backup and disaster recovery strategies.
Apply knowledge of cloud-native security tools and industry frameworks to identify risks and control gaps during cloud transformations and migrations.
Support the use of AI/ML-driven techniques to enhance risk detection and automate compliance and control checks.
Work closely with client personnel to analyze, evaluate, and improve security controls at both procedural and technology levels.
Communicate engagement observations, risks, and industry trends to engagement teams and client stakeholders through clear reports, dashboards, and presentations.
Demonstrate strong technical capability and professional judgment, with the ability to quickly assimilate new cloud technologies and frameworks.
Requirements
Bachelor’s or Master’s degree with 3–6 years of relevant experience
2–4 years of experience in IT cloud risk and cloud security assessments
Good technical understanding of cloud platforms such as AWS, Azure, or Google Cloud Platform
Experience designing and assessing IT control frameworks, including IT general controls, application controls, and interface controls for cloud environments
Exposure to cloud security audits, architecture reviews, and control testing engagements
Strong client-facing experience with the ability to collaborate effectively with IT, security, internal audit, and business stakeholders
Cloud-related certifications such as CCSK, or AWS/Azure/GCP security certifications are preferred.