Cloud Security - Assistant Manager - Bangalore
Bengaluru, Karnataka, India
KPMG India
KPMG is a global network of professional firms providing Audit, Tax and Advisory services.About KPMG in India
KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Jaipur, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara and Vijayawada.
KPMG entities in India offer services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment.
- Design, Implement, and maintain the security of client’s cloud infrastructures and services.
- Actively contribute to innovation activities which are undertaken in the area of cloud security.
- Help end customer in designing cloud security architecture, design cloud security landing zone.
- Develop and document security policies & procedures as per the requirements.
- Perform cloud security assessment, prioritize security findings, and provide recommendations to mitigate the security gaps.
- Develop custom playbooks for threat hunting and auto-remediation.
- Assist with incident response in the event of a security breach.
- Review of client’s cloud security posture and make recommendations for improvement.
- Cloud on-boarding to tools such as Prisma, Dome9, Sysdig etc. Define relevant cloud policies, perform security remediation as per findings.
- Responsible for managing CSPM, CWPP, CNAPP, Code Security, Data Security, Alert Management etc.
- Hands-on experience with at least one major public cloud platform, such as AWS, Azure, or Google Cloud Platform. Any other public cloud platform along with these will be an additional desirable attribute.
- Experience in creating and evaluating cloud security architectures by following industry best practices.
- Hands-on experience on cloud native security features like Azure Sentinel, Microsoft Defender for cloud, CloudTrail, GuardDuty, Inspector, Security Hub, Command Centre etc.
- In-depth knowledge of managing common cloud security threats and vulnerabilities.
- Experience with security compliance standards such as ISO 27001/27002/27017, NIST, CSA CCM etc.
- Understanding on various government and regulatory compliance requirements w.r.t cloud security
- Knowledge of Identity and Access Management protocols/solutions such as SSO, SAML Federated Identity, RBACs & authorization solutions.
- Experience with Linux & Windows operating systems for patch management, log management, and understanding on OS hardening requirements.
- Experience in scripting language such as Python, PowerShell etc. Security automation skills/experience will be an additional desirable attribute.
- Experience in third party solutions such as Palo Alto Prisma Cloud, ZScaler, Sysdig, Checkpoint, etc. is desirable.
- Good understanding of containerization technologies/concepts such as Kubernetes, Docker etc. and related security best practices.
- Impeccable communication skills, both written and oral.
- Strong organization and time-management skills, with the ability to swiftly transition between projects and tasks.
- Must have one or more cloud certifications. Desirable certifications include: -
- AZ-500 (Azure Security Engineer)
- SC-100 (Cybersecurity Architect Expert)
- AWS Certified Specialty – Security
- Google Cloud Professional Cloud Security Engineer
- AZ-303 (Microsoft Azure Architect Technologies)
- Prisma Certified Cloud Security Engineer (PCCSE)
Equal employment opportunity information
KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation AWS Azure Cloud CNAPP Compliance CSPM Docker GCP IAM Incident response ISO 27001 Kubernetes Linux NIST PowerShell Python SAML Scripting Security assessment SSO Vulnerabilities Windows
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Operations Analyst jobs
- Open Sr. Security Engineer jobs
- Open Security Consultant jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs