**Introduction** We are seeking a highly skilled and experienced Cloud Security Engineers to support the implementation, tuning, and maintenance of cloud security platforms (CSPM, CWPP, SSPM). This role focuses on engineering tasks, posture policy management, reporting, and platform operations. **Your role and responsibilities** Key Responsibilities As a Cloud Security Engineer, you will play a crucial role in assisting in implementing, tuning, and optimizing Prisma Cloud CSPM policies across AWS, Azure, and GCP. Perform baseline and periodic posture assessments to identify configuration drift and highlight risky assets. Collect, parse, and analyze Prisma Cloud audit logs from cloud workloads to detect misconfigurations and threats. Support onboarding and configuration of the SSPM platform for key SaaS applications used by the client. Assist in defining and tuning posture policies and compliance baselines across CSPM, CWPP, and SSPM. You'll also maintain and update SOPs, RQL templates, and operational documentation. Support monthly knowledge transfer sessions and cloud security framework awareness activities. Administer and monitor CSPM (Cloud Security Posture Management), CWP (Cloud Workload Protection), and SSPM (SaaS Security Posture Management) platforms. Perform cloud misconfiguration analysis, vulnerability detection, and incident triage from cloud-native and third-party security tools. You will be responsible in automating policy enforcement and remediation scripts in coordination with DevOps/CloudOps. Integrate tools into SIEM, SOAR, ITSM, and CI/CD pipelines as required. Participate in onboarding cloud accounts/projects into security tooling and ensure correct tagging, coverage, and visibility. Provide operational metrics, dashboards, and reporting to stakeholders. Collaborate with cloud architects and app teams to provide security reviews and technical remediation guidance. Assist in the implementation of SOPs for platform and incident management of CSPM/CWP/SSPM. Ensure CSPM alert integration into the client’s SIEM and ITSM systems, mapped to SOC workflows. **Required technical and professional expertise** Technical Requirements: * 5+ years in cloud security consulting, architecture, or posture management. * Proven and extensive experience with Prisma Cloud (CSPM/CWPP) and SSPM platforms. * Hands-on experience integrating alerts into SIEM/SOAR tools like Google SecOps. * Familiar with cloud-native and hybrid environment architecture in AWS, Azure, or GCP * Familiar with compliance frameworks: NIST CSF, CIS, GDPR, PCI DSS. * Experience integrating alerts and posture signals into SIEM/ITSM (e.g., Chronicle, Splunk, ServiceNow) Soft Skills: * Strong analytical and problem-solving abilities with keen attention to detail. * Excellent communication and collaboration skills, with the ability to interact effectively with stakeholders at all levels. * Capable of managing multiple priorities in a fast-paced, dynamic environment. **Preferred technical and professional experience** Certifications: CCSP, GCSA, CISSP, CRISC, CISA, AWS/Azure/GCP Security Specialty ( or any cloud platform-specific certs), Prisma Cloud Certification (e.g., Palo Alto Networks Certified Cloud Security Engineer-PCCSE), Google Cybersecurity Professional Certificate or SIEM-specific trainings (e.g., Chronicle) IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.