Senior Associate, Cloud Security - PwC

Key Responsibilities

• Design and implement security architectures for cloud environments (AWS, Azure, GCP) across IaaS, PaaS, and SaaS workloads.
• Develop and maintain Infrastructure‑as‑Code templates (Terraform, CloudFormation) to enforce security baselines and compliance.
• Automate security testing and remediation using Python scripts, CI/CD pipelines, and security tooling.
• Conduct risk assessments, vulnerability scans, and threat modeling to identify and mitigate cloud‑specific risks.
• Collaborate with client engineering teams to integrate security controls into development and operations processes.
• Provide guidance and best‑practice recommendations to improve overall cloud security posture.

Requirements

• 5+ years of hands‑on experience securing cloud platforms (AWS, Azure, GCP).
• Strong proficiency in Infrastructure as Code (Terraform) and scripting with Python.
• Deep understanding of cloud security frameworks, identity & access management, network security, and data protection.
• Experience with security automation, CI/CD integration, and vulnerability management tools.
• Relevant certifications (e.g., AWS Certified Security – Specialty, Certified Cloud Security Professional) are a plus.