The Custom Group of Companies
Job Description: Cloud Security SME
Overview
We are seeking a highly skilled Cloud Security Subject Matter Expert (SME) to join our IT Security team. In this role, you will help shape and implement our clients' IT security strategy, provide expert guidance on cloud security, and drive the design and optimization of detection, response, and compliance processes across hybrid environments.
Key Responsibilities
Strategic & Advisory Partner with client IT teams to align security initiatives with business and technology strategies. Provide expert consultation on IT projects with a focus on cloud security. Research and recommend new security tools, technologies, and best practices. Cloud Security Operations
Act as the SME for cloud security within the Security Operations Department. Manage and optimize IDPS deployments (e.g., Suricata, Snort) and perform advanced PCAP analysis. Develop and enhance detection and response workflows in cloud-native and hybrid environments. Investigate and triage security alerts from SIEM and cloud-native tools. Collaborate with cloud operations and infrastructure teams on secure architecture and configurations. Build and maintain detection rules, incident response playbooks, and support threat hunting efforts. Support compliance evidence gathering, reviews of new integrations, and security incident response. Automate incident response workflows using cloud-native services (e.g., AWS Lambda, Step Functions). Compliance & Risk Management
Ensure incident response processes align with GDPR, SOC, NIST, ISO, and other standards. Maintain documentation for audits and compliance reviews. Conduct IT security risk assessments for high-impact projects and recommend mitigating controls. Own and resolve audit findings (FRB and internal) related to monitoring and response. Process Improvement & Operations
Refine incident response procedures and conduct post-incident reviews. Recommend and implement process improvements to strengthen security posture. Operate and maintain key IT security controls: SIEM, DLP, Vulnerability Management, Threat Intelligence, Endpoint Protection, etc. Manage vendor and partner relationships to ensure robust IT security services. Qualifications
Experience & Skills
Hands-on IT Security analysis and engineering experience across systems, networks, and infrastructure. Strong background in intrusion detection, malware analysis, forensics, and incident response in cloud/hybrid environments. Deep knowledge of AWS, Azure, and Office 365 security. Proficiency in tuning, operating, and developing IT Security frameworks and controls. Strong technical writing, reporting, and communication skills (business and technical). Solid time management, organizational skills, and collaborative approach. Expert-level knowledge of Firewalls, TCP/IP, IPS, DLP, proxies, SIEM, and Endpoint Protection. Financial services or banking industry experience is preferred. Education & Certifications
Bachelor's degree in Computer Science, Computer Engineering, Cybersecurity, or related field. Security certifications such as CISSP and at least one GIAC (GSEC, GCED, GCIA, GCIH, GREM, GCFR) preferred. Cloud certifications such as AWS Solutions Architect or AWS Security Specialty strongly desired. Knowledge of incident handling frameworks (ISO 27035, NIST SP 800-61, SANS, CERT, ENISA). Experience with security automation in cloud-native environments. Seniority Level
Mid-Senior level Industry
Financial Services Investment Banking Capital Markets
Employment Type
Full-time Job Functions Engineering
Skills Vulnerability Management AWS Security Cloud Security Intrusion Detection Information Security C
Overview
We are seeking a highly skilled Cloud Security Subject Matter Expert (SME) to join our IT Security team. In this role, you will help shape and implement our clients' IT security strategy, provide expert guidance on cloud security, and drive the design and optimization of detection, response, and compliance processes across hybrid environments.
Key Responsibilities
Strategic & Advisory Partner with client IT teams to align security initiatives with business and technology strategies. Provide expert consultation on IT projects with a focus on cloud security. Research and recommend new security tools, technologies, and best practices. Cloud Security Operations
Act as the SME for cloud security within the Security Operations Department. Manage and optimize IDPS deployments (e.g., Suricata, Snort) and perform advanced PCAP analysis. Develop and enhance detection and response workflows in cloud-native and hybrid environments. Investigate and triage security alerts from SIEM and cloud-native tools. Collaborate with cloud operations and infrastructure teams on secure architecture and configurations. Build and maintain detection rules, incident response playbooks, and support threat hunting efforts. Support compliance evidence gathering, reviews of new integrations, and security incident response. Automate incident response workflows using cloud-native services (e.g., AWS Lambda, Step Functions). Compliance & Risk Management
Ensure incident response processes align with GDPR, SOC, NIST, ISO, and other standards. Maintain documentation for audits and compliance reviews. Conduct IT security risk assessments for high-impact projects and recommend mitigating controls. Own and resolve audit findings (FRB and internal) related to monitoring and response. Process Improvement & Operations
Refine incident response procedures and conduct post-incident reviews. Recommend and implement process improvements to strengthen security posture. Operate and maintain key IT security controls: SIEM, DLP, Vulnerability Management, Threat Intelligence, Endpoint Protection, etc. Manage vendor and partner relationships to ensure robust IT security services. Qualifications
Experience & Skills
Hands-on IT Security analysis and engineering experience across systems, networks, and infrastructure. Strong background in intrusion detection, malware analysis, forensics, and incident response in cloud/hybrid environments. Deep knowledge of AWS, Azure, and Office 365 security. Proficiency in tuning, operating, and developing IT Security frameworks and controls. Strong technical writing, reporting, and communication skills (business and technical). Solid time management, organizational skills, and collaborative approach. Expert-level knowledge of Firewalls, TCP/IP, IPS, DLP, proxies, SIEM, and Endpoint Protection. Financial services or banking industry experience is preferred. Education & Certifications
Bachelor's degree in Computer Science, Computer Engineering, Cybersecurity, or related field. Security certifications such as CISSP and at least one GIAC (GSEC, GCED, GCIA, GCIH, GREM, GCFR) preferred. Cloud certifications such as AWS Solutions Architect or AWS Security Specialty strongly desired. Knowledge of incident handling frameworks (ISO 27035, NIST SP 800-61, SANS, CERT, ENISA). Experience with security automation in cloud-native environments. Seniority Level
Mid-Senior level Industry
Financial Services Investment Banking Capital Markets
Employment Type
Full-time Job Functions Engineering
Skills Vulnerability Management AWS Security Cloud Security Intrusion Detection Information Security C