Cloud Security Vulnerability Management Program Specialist

What you'd actually do

1. Ensure cloud workloads are protected and monitored in alignment with CSA security standards and defined baselines.
2. Maintain continuous visibility into workload security posture across virtual machines, containers, and compute platforms.
3. Identify workload vulnerabilities, misconfigurations, and insecure operating system or platform settings.
4. Monitor runtime activity to detect suspicious behavior, privilege escalation, policy violations, and drift from security baselines.
5. Build, maintain, and tune vulnerability detections aligned to vulnerability management and runtime protection requirements.

Skills

What the JD emphasized

• enterprise cloud workloads
• runtime lifecycle
• workload-level vulnerabilities
• insecure configurations
• runtime behaviors
• hybrid and multi-cloud environments
• workload security posture
• virtual machines, containers, and supporting compute services
• vulnerability assessment
• configuration validation
• runtime monitoring
• security baselines
• suspicious or policy-violating activity
• cloud workload architectures
• operating system security fundamentals
• shared responsibility models
• risk and prioritize remediation
• infrastructure, platform, engineering, and operations teams
• vulnerability findings
• actionable, risk-assessed, and remediated
• workload security maturity
• Cloud Security tooling
• audit and regulatory requirements
• risk-based reporting
• workload security posture
• fast-paced, enterprise-scale environments
• workload security standards, baselines, and documentation
• consistent governance and assurance
• in-scope compute platforms