Senior Cloud Security Consultant – Detection Focused

This is a fully remote position, open to applicants in Australia.

📋 Description

• Perform cloud security assessments across various environments, with a primary focus on AWS and Azure: evaluating configurations, identity architectures, network exposure, and potential attack vectors to identify the most significant risks.

• Develop and implement detection logic and alerting mechanisms for cloud control plane activities, identity-based threats, and exposures caused by misconfigurations across both cloud-native and third-party security platforms.

• Create automation scripts to enhance assessment efficiency, extract and correlate data from extensive datasets, and transform repeatable analyses into reusable tools for the team.

• Collaborate with our Red Team during Purple Team exercises: assessing customer detection and response capabilities and converting identified gaps into actionable recommendations.

• Work together with internal delivery teams to translate assessment results into deployable detection content.

• Generate clear, high-quality reports and presentations tailored for both technical and executive audiences.

• Manage client engagements from initial scoping through to delivery, ensuring stakeholders are well-informed at every stage.

• Contribute to the advancement of our service offerings through the development of methodologies, contributions to tooling, and public thought leadership.

⛳️ Requirements

• Extensive hands-on experience with AWS and Azure, encompassing identity, computing, networking, storage, serverless, as well as logging and monitoring services.

• A thorough understanding of cloud architecture patterns and the common security assumptions that may fail in practice.

• Proven experience in creating effective detection content: crafting queries, developing alerting mechanisms, and filtering out noise in cloud-native and third-party SIEM/XDR environments.

• Knowledge of threat actor behaviors in cloud environments, along with the capability to translate that understanding into effective detections that accurately target relevant issues.

• Experience in tracing how misconfigurations can lead to realistic attack paths — performing analyses that present a coherent narrative rather than a mere list of isolated findings.

• Familiarity with prevalent cloud attack patterns, including privilege escalation, lateral movement, persistence, and data exfiltration.

• Strong scripting skills in Python or a similar language, with the ability to develop tools for automating assessment tasks, managing large datasets, and enhancing existing frameworks.

• Experience in writing queries across various platforms such as KQL, SPL, or cloud-native query engines.

• Excellent written and verbal communication skills in English.

• Proficiency in additional languages is a significant asset, especially Mandarin, Japanese, Hindi, or Thai.

🏝️ Benefits

• Leading compensation and equity award packages.

• Comprehensive wellness programs focused on both physical and mental health.

• Competitive vacation time and holidays for well-deserved breaks.

• Paid parental and adoption leave policies.

• Professional development opportunities available to all employees, regardless of their level or role.

• Employee Networks, local community groups, and volunteer opportunities to foster connections.

• A vibrant office culture complemented by world-class amenities.

• Certified as a Great Place to Work™ globally.