security
Posted Jan 30Senior Cloud Security Analyst
at Qualys
Pune, IndiaOn-site
Responsibilities
- Proven track record of designing and implementing complex cloud environments preferably in a cloud security engineer role.
Requirements
- Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! Qualys is looking for a Senior Cloud Security Analyst to strengthen its cloud security posture across OCI, AWS, Azure, and GCP environments.
- The ideal candidate brings strong hands-on cloud security experience, deep understanding of cloud-native security controls, and the ability to translate security findings into actionable risk reduction. Key
- Experience with vulnerability scanning tools, penetration testing methodologies, and patch management processes.
- Knowledge of scripting languages (e.g., Python, PowerShell) and automation tools (e.g., Terraform, Ansible) to automate security tasks and configurations.
- Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field.
- Relevant certifications such as CCSK, CCSP and cloud native certifications like AWS, Azure, OCI, GCP are highly desirable.
- Experience implementing security controls in cloud environments using tools such as AWS Security Hub, AWS GuardDuty, AWS IAM Analyzer, Azure Security Center, or Azure Defender or Google Cloud Security Command Center or Oracle Cloud Guard.
- Knowledge of industry-standard security frameworks and regulations (e.g., NIST, CIS, GDPR, HIPAA).
- In-depth knowledge of cloud components, IAM, and best practices, including user provisioning, access/policy management, authentication mechanisms Familiarity with CSP environments like OCI, AWS, Azure, GCP etc
- Experience with cloud governance processes, cloud security implementation, cloud security monitoring etc. Strong problem-solving and analytical skills, with the ability to assess complex cloud requirements, identify gaps, and propose effective solutions.
Additional details
- This role will focus on cloud threat detection, security monitoring, posture management, incident response, and automation , working closely with Cloud Operations, DevOps, Network Security, Site Reliability Engineering, Platform Security, and SOC teams.