Cloud Security Engineer / Identity & Access Management Analyst

Role Overview:

These roles focus on protecting an organization's cloud infrastructure and ensuring secure access to systems and applications. The Cloud Security Engineer implements security measures in cloud environments, while the IAM Analyst ensures proper user access controls, authentication, and compliance with security policies.

• Design, implement, and maintain security controls for cloud platforms (AWS, Azure, GCP).
• Monitor cloud environments for vulnerabilities, threats, and incidents.
• Configure and manage firewalls, VPNs, encryption, and intrusion detection systems in cloud setups.
• Conduct cloud security assessments, risk analysis, and remediation planning.
• Implement security best practices for DevOps and cloud-native applications.

• Manage user accounts, roles, and permissions across cloud and on-premise systems.
• Implement and monitor multi-factor authentication (MFA), single sign-on (SSO), and privileged access management (PAM).
• Conduct access reviews and audits to ensure compliance with regulatory standards.
• Collaborate with HR, IT, and security teams to enforce access policies and onboarding/offboarding processes.
• Analyze access-related incidents and provide recommendations for mitigation.

• Stay updated on emerging cloud security threats and IAM best practices.
• Support compliance initiatives (ISO 27001, SOC2, GDPR, Australian Privacy Act).
• Provide guidance and training to staff on security policies and secure cloud practices.
• Collaborate with IT, security, and business teams to implement solutions.

• Education: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field. Relevant certifications are highly valued.
• Certifications:Cloud Security Engineer: CISSP, CCSP, AWS Certified Security Specialty, Azure Security Engineer Associate.
• IAM Analyst: Certified Identity and Access Manager (CIAM), Microsoft Certified: Identity and Access Administrator Associate, or equivalent.
• Experience:Cloud Security Engineer: 2–5 years securing cloud environments and implementing security architectures.
• IAM Analyst: 2–5 years in identity and access management, user provisioning, and compliance audits.
• Technical Skills:Experience with cloud platforms (AWS, Azure, GCP).
• Knowledge of IAM tools (Okta, SailPoint, CyberArk, Microsoft Entra).
• Understanding of network security, firewalls, encryption, and access control policies.
• Familiarity with security monitoring, SIEM tools, and incident response.
• Soft Skills:Strong analytical and problem-solving skills.
• Excellent communication for liaising with technical and non-technical stakeholders.
• Attention to detail and a strong security mindset.
• Collaboration and teamwork skills.

• Typically office-based, remote, or hybrid. May involve on-call rotation for incident response. Collaboration with IT, DevOps, and security teams is essential.