Penetration Tester – Cloud Security

Penetration Tester Cloud Security

Position: Security Engineer

Department: Cybersecurity / Cloud Security

Experience: 25

We are seeking an experienced cloud penetration tester to assess, exploit, and strengthen the security of our cloud environments (AWS, Azure, GCP). The role involves simulating real-world cyberattacks, identifying vulnerabilities, and delivering actionable remediation recommendations.

Key Responsibilities

Perform in-depth penetration testing on cloud infrastructures (AWS/Azure/GCP).

Conduct cloud-specific vulnerability assessments and configuration reviews.

Simulate cyber-attacks to identify weaknesses in cloud applications, networks, APIs, and IAM configurations.

Evaluate cloud-native security controls (Security Groups, IAM roles, Key Management, WAF, CloudTrail, etc.).

Test containerized and serverless environments (Docker, Kubernetes, Lambda, Cloud Functions).

Identify misconfigurations, privilege escalation paths, insecure storage, authentication issues, and API exploits.

Prepare detailed technical reports and executive summaries with remediation steps.

Work with DevOps and Cloud teams to improve security posture and ensure secure architecture.

Assist in threat modeling and secure design of new cloud features/services.

Stay updated on modern cloud attack tools and techniques (e.g., Pacu, ScoutSuite, Prowler, KubeHound).