Especialista II de Segurança em Nuvem (CloudSec)
Grupo Boticário · Brazil
- Hybrid
- Full-time
- $90,000 / year
- Brazil
Job highlights
- Define and implement cloud security strategy.
- Manage security processes and cloud products.
- Mitigate cloud risks and support incident response.
- Ensure compliance and security standards.
- Mentor team and participate in hiring.
About the role
Cloud Security Specialist II
Grupo Boticário, a global beauty conglomerate, is seeking a Cloud Security Specialist II to join their team. This role is crucial in defining and implementing scalable cloud security strategies, managing security processes and solutions, and acting as a key point of contact for cloud risk identification and mitigation.
Responsibilities and Assignments
- Define short-term area strategy for organizational scalability.
- Align and define goals with teams.
- Direct cloud security action plans.
- Define, evaluate, and implement cloud security processes and solutions.
- Define, manage, and develop CloudSec products.
- Act as an Information Security focal point for identifying, assessing, and mitigating cloud risks.
- Plan and execute security tests on cloud infrastructure.
- Deploy and maintain cloud environments supporting CloudSec solutions.
- Support cloud security incident response.
- Create, guide, document, and review cloud security processes, workflows, and guidelines.
- Coordinate cloud security projects impacting the business.
- Technically coordinate the team, fostering development and results.
- Define cloud compliance and security standards for management.
- Manage strategic partnerships and optimize global environment resilience.
- Formally mentor other architects and specialists.
- Actively support team hiring by participating in technical interviews.
Requirements and Qualifications
Essential:
- Solid experience with Python, Bash, or other languages for automation and API integration of security.
- Proficiency in Terraform and/or Ansible and Infrastructure as Code (IaC) concepts.
- Experience writing policies using Rego (Open Policy Agent).
- Experience in Kubernetes (K8s) environments, including cluster hardening and orchestration security practices.
- Solid knowledge of visibility and compliance tools, specifically CSPM, CWPP, and CNAPP platforms.
Desirable:
- Knowledge of Go for internal security tool development.
- Experience with query languages for log analysis (e.g., KQL, SQL, or SPL).
- Hands-on experience with Prisma Cloud and Cortex Cloud solutions.
Additional Information
Our Benefits:
Grupo Boticário offers a comprehensive benefits package designed for a balanced and complete life, including health and wellness programs, nutrition support, well-being initiatives, family support, and financial security.
About Grupo Boticário:
From a small compounding pharmacy to the largest cosmetics franchise globally, Grupo Boticário is a diverse group with 15 brands across more than 40 countries. Recognized as a top employer, they are committed to innovation, technology, diversity, and sustainability.
Key skills/competency
- Cloud Security
- Python
- Terraform
- Ansible
- Kubernetes
- Rego
- CSPM
- CWPP
- CNAPP
- Infrastructure as Code
Skills & topics
- Cloud Security
- Security Specialist
- Python
- Terraform
- Ansible
- Kubernetes
- Rego
- CSPM
- CWPP
- CNAPP
- IaC
- Automation
- Risk Management
- Incident Response
- Compliance
How to get hired
- Tailor your resume: Highlight experience with Python, Terraform, Kubernetes, and cloud security tools like CSPM, CWPP, CNAPP.
- Showcase IaC skills: Emphasize your experience with Terraform and/or Ansible, and Rego policy writing.
- Prepare for technical interviews: Be ready to discuss cloud security best practices and incident response scenarios.
- Understand Grupo Boticário's culture: Research their commitment to innovation, sustainability, and their beauty ecosystem.
- Network and apply: Connect with team members on LinkedIn and express your interest in the Cloud Security Specialist II role.
Technical preparation
Master Python or Bash for automation.,Demonstrate Terraform/Ansible Infrastructure as Code.,Practice Rego policy writing for security.,Harden Kubernetes clusters and orchestrations.
Behavioral questions
Describe a cloud security risk you mitigated.,How do you align security goals with teams?,Explain your approach to mentoring specialists.,How do you handle incident response coordination?
Frequently asked questions
- What are the key technical skills required for the Cloud Security Specialist II role at Grupo Boticário?
- The essential technical skills include solid experience with Python, Bash, or similar automation languages, proficiency in Terraform and/or Ansible for Infrastructure as Code (IaC), experience writing policies with Rego (Open Policy Agent), and strong knowledge of Kubernetes (K8s) environments, including hardening and security. Familiarity with CSPM, CWPP, and CNAPP platforms is also crucial for this Cloud Security Specialist II position.
- Does Grupo Boticário offer remote work for the Cloud Security Specialist II position?
- The job description mentions 'Auxílio home office (modelos de trabalho híbrido e remoto)', indicating that hybrid and remote work arrangements are supported. Candidates for the Cloud Security Specialist II role should confirm the specific work arrangement during the application process.
- What are the desirable qualifications for a Cloud Security Specialist II at Grupo Boticário?
- Desirable qualifications include knowledge of Go for developing internal security tools, experience with query languages for log analysis (e.g., KQL, SQL, SPL), and practical experience with Prisma Cloud and Cortex Cloud solutions. These add value to your application for the Cloud Security Specialist II role.
- How can I demonstrate my experience with Infrastructure as Code (IaC) for the Cloud Security Specialist II role at Grupo Boticário?
- To demonstrate your IaC experience for the Cloud Security Specialist II role, highlight your proficiency with tools like Terraform and/or Ansible in your resume and cover letter. Be prepared to discuss specific projects where you've defined, implemented, or managed cloud infrastructure using these tools, including concepts like cluster hardening and policy enforcement.
- What is the typical interview process for a technical role like Cloud Security Specialist II at Grupo Boticário?
- While not explicitly detailed, technical roles at Grupo Boticário typically involve an initial screening, followed by technical interviews to assess your skills in areas like cloud security, automation (Python, Bash), IaC (Terraform, Ansible), and container security (Kubernetes). You may also participate in behavioral interviews and potentially a final interview with leadership for the Cloud Security Specialist II position.
- What kind of security tools are essential for the Cloud Security Specialist II position at Grupo Boticário?