Cloud Ops Security Engineer - Robotico Digital Sdn

Key Responsibilities

• Own and fine‑tune the Wazuh SIEM, ingesting CloudTrail, Cloud Audit, Azure Monitor, WAF, identity, and EDR logs; monitor and triage alerts daily.
• Execute the incident‑response runbook: contain threats, investigate root cause, document findings, and produce post‑mortems with clear escalation paths.
• Implement security baselines as code, embedding guardrails and golden images into IaC pipelines to prevent configuration drift.
• Continuously assess cloud posture, detecting public storage buckets, over‑permissive IAM roles, open security groups, and unencrypted data.
• Run vulnerability scans on operating systems, application dependencies, and cloud resources; prioritize findings, assign severity, and track remediation.

Requirements

• Hands‑on experience with SIEM platforms, preferably Wazuh or similar, and daily log analysis.
• Strong knowledge of AWS and Azure services, including CloudTrail, Azure Monitor, IAM, and networking security controls.
• Proven incident‑response skills, with the ability to follow and improve runbooks.
• Experience codifying security controls using Infrastructure as Code tools (e.g., Terraform, CloudFormation, ARM templates).
• Familiarity with vulnerability management tools and processes for both cloud and containerized workloads.