Sr. Cybersecurity Engineer (Cloud Security & GRC)

DescriptionAbout the RoleWe are looking for a highly skilled and motivated Sr. Cybersecurity Engineer to manage our cloud security and governance, risk management, and compliance (GRC) activities. This role involves implementing security controls in our cloud environment, supporting vendor and partner assessments, maintaining our Information Security Management System (ISMS), and responding to security assessments and audits. The ideal candidate will work closely with other IT professionals to ensure secure operations and data protection.Key Responsibilities: Cloud Security: Implement and configure security controls in a cloud environment, including authentication procedures, network security, and data protection for our cloud infrastructure (Microsoft Azure and AWS). Provide security recommendations to enhance the cloud security posture and actively support their implementation. Ensure cloud security systems and resources are kept up-to-date. Provide technical support during security incidents, assisting in the containment and resolution phases. Support DevSecOps practices by integrating security into the CI/CD pipeline and implementing container security recommendations. Stay updated with cloud security best practices, technologies, and emerging threats. Governance, Risk Management, and Compliance (GRC): Support vendor and partner assessments to ensure compliance with security standards. Maintain and update the Information Security Management System (ISMS) to align with organizational and regulatory requirements. Respond to security assessments and audits, providing necessary documentation and remediation plans. Conduct regular risk assessments and audits to identify potential security risks and vulnerabilities. Establish and maintain security policies, procedures, and guidelines. Monitor and report on the effectiveness of the cybersecurity program and its compliance with internal and external requirements. Requirements: Education and Certifications: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.Professional certifications in Microsoft Azure AZ-500, Certified Cloud Security Professional (CCSP), and relevant GRC certifications (e.g., CISSP, CISM, CISA). Experience: 5+ years of experience in cybersecurity with a focus on cloud security and GRC.Proven experience in implementing and managing cloud security controls and practices.Extensive knowledge of cybersecurity frameworks, standards, and regulations (e.g., NIST, ISO, GDPR, HIPAA). Skills and Competencies: Strong understanding of cloud security frameworks and standards (e.g., OWASP, Cloud Security Alliance, Azure Security Benchmark).Proficiency in security technologies and tools related to cloud environments.Excellent problem-solving and analytical skills.Strong leadership and team collaboration abilities.Effective communication and interpersonal skills.Ability to work under pressure and handle multiple priorities simultaneously.BenefitsYou spend a lot of your time at work, so it should be challenging, fun and interesting. At Defined.ai it will be all of those things and more. Here’s what we offer:Flexible working schedule and hybrid model. We know comfort can boost creativity and performance, so you can manage your schedule and work both from one of our modern office spaces or home.Excellent career development opportunities in a high growth company. With us, you can accomplish your career goals and follow a well-described career path with the support of your supervisor.Culture of feedback and continuous improvement. AI is a fast-paced area, so we keep track of tech trends, and we always ask for feedback.An international and diverse team. We have more than 30 nationalities at our 3 locations, and we provide language classes.Continuous training opportunities. You can choose from many options: leveraging hand-on workshops, unlimited access to Udemy and formal development opportunities.We love to have fun together. We joke a lot, and we can't imagine work without fun activities – we already surfed, raced carts and played soccer together.