**Introduction** Seeking skilled and proactive Cloud Security senior Engineer to oversee and enhance our cloud security posture across AWS and Azure environments. The ideal candidate will be responsible for monitoring, reporting, reviewing architecture and ensuring compliance with cloud security policies and guidelines. This role involves working with CSPM tools, Manage 0365 security, WAF implementation with ruleset, identifying security gaps, and implementing best practices to maintain a secure and resilient cloud infrastructure. **Your role and responsibilities** Key Responsibilities: A). Cloud Security Compliance & Reporting: Ø Prepare and deliver monthly reports on cloud security compliance posture. Ø Conduct Monthly, Quarterly & half-yearly reviews of cloud security infrastructure and architecture (both AWS & Azure). Ø Report and track cloud security compliance metrics and improvement actions. Ø Develop and enforce cloud security policies, standards, and best practices Ø Conduct threat modelling, risk assessments, and vulnerability management. B). CSPM Tool Management: Ø Administer and manage Cloud Security Posture Management (CSPM mandatory) tools. Ø Developing custom RQL policies and configuring dashboards for executive and operational reporting. Implemented RBAC with tailored permission sets. Ø created SOPs for alert response, and ensured timely closure of misconfigurations through continuous monitoring and escalation aligned with defined SLAs Ø Remediate misconfigurations detected by CSPM tools (e.g., open ports, public buckets). Ø Monitor and respond to alerts from Security Hub (AWS) or Security Centre (Azure). Ø Govern cloud assets using CSPM tools and enforce best practices. Ø Provide monthly compliance and security score reports. Ø Take immediate action on high-critical accounts and derive improvement plans. Ø Create custom dashboards OR rules in CSPM tools as per requirement. C). Security Monitoring & Incident Response: Ø Continuously monitor cloud environments for security alerts and take necessary remediation actions. Ø Ensure adherence to MSIL cloud security policy and cloud security checklists. Ø Respond to security incidents and assist in root cause analysis. D). Manage Office 365 Security Ø Perform operations support and troubleshooting for access controls Ø Perform operations support and troubleshooting for Multi Factor Authentication Ø Perform operations support and troubleshooting for Microsoft Office 365 Data Protection Ø Perform operations support and troubleshooting for Encryption and Key management Ø Perform operations support and troubleshooting for ATA E). Security Architecture & Recommendations: Ø Identify and recommend security improvements aligned with cloud security guidelines and best practices. Ø Suggest and implement architectural enhancements for security, high availability, data protection, and data leak prevention. Ø Design and implement secure cloud architectures for Azure and AWS environments. Ø Implement and manage security controls such as IAM, encryption, WAF etc. F). Policy & Baseline Enforcement: Ø Ensure cloud environments meet minimum security baselines. Ø Drive implementation of security controls and compliance with internal and external standards. **Required technical and professional expertise** Qualifications: Ø Should be BE/B.Tech /MCA/BCA with minimum 6-9 years of expiration in cloud security or cloud infrastructure roles. Ø Must have hands-on experience with AWS Security Hub, Azure Security Center, Microsoft Defender for Cloud, AWS Security Hub, IAM, KMS, WAF, etc. Ø Proficiency in CSPM tools such as Prisma Cloud, or Microsoft Defender for Cloud. Ø Strong understanding of cloud security frameworks and best practices (e.g., CIS Benchmarks, NIST, ISO 27001). Ø Experience with security incident response and remediation in cloud environments. **Preferred technical and professional experience** Preferred Skills: Ø Cloud certifications (e.g.,AZ-500 , AWS Certified Security -are highly desirable). Ø Experience with multi-cloud security strategies. Ø Familiarity with container security (Kubernetes, Docker). Ø Experience in incident response and digital forensics. Ø Excellent communication and documentation abilities. IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.