Job Summary
dentity and Access Management (IAM): Provision and audit IAM users, roles, and policies applying the principle of least privilege. Manage multi-factor authentication (MFA) and Single Sign-On (SSO) integrations. Incident Response & Triage: Investigate security events and alerts generated by AWS native tools (e.g., GuardDuty, Security Hub, Macie). Escalate critical threats to L3/Security Operations Center (SOC) teams. Network & Endpoint Security: Monitor and troubleshoot virtual firewalls, network access control lists (NACLs), and AWS Security Groups. Ensure secure Bastion Host and VPN access configurations. Data Protection & Encryption: Support data-at-rest and data-in-transit encryption utilizing AWS KMS (Key Management Service) and ACM (AWS Certificate Manager). Perform regular key and certificate rotations. Vulnerability & Patch Management: Execute vulnerability scans, track patch compliance, and support remediation of unpatched instances or misconfigured resources.
Key Responsibilities
2. Conduct Root Cause Analysis For Escalated Incidents, Leveraging Aws Security Tools And Cisco Asa Configurations To Identify And Mitigate Security Threats.
3. Manage And Update The Knowledge Base, Contributing To Documentation And Training Sessions For New Analysts, Enhancing Team Capabilities In Aws Security And Cisco Asa Best Practices.
4. Collaborate With Cross-Functional Support Teams To Resolve Complex Tickets Within Agreed Slas, Ensuring Seamless Operations And Maintaining Security Compliance.
5. Drive Customer Satisfaction Through First Call Resolution Initiatives, Minimizing Case Reopens, And Proactively Addressing Potential Security Risks.
Skill Requirements
2. Strong Knowledge Of Cisco Asa And Its Deployment In Network Security.
3. Solid Understanding Of Incident Management And Root Cause Analysis Practices.
4. Ability To Coach And Train Team Members In Technical Support Processes And Security Protocols.
Other Requirements
: L2 Cloud Security Engineer, has to be the escalation point for complex security incidents, vulnerability remediation, and access management across multi-account AWS environments. Required to work closely with Level 1 support, cloud architects, and operations teams to maintain a strong security posture and ensure adherence to compliance standards