CMS-Senior-Cloud Engineer
Indexed description
CMS- Cloud Security Posture Management Senior
Responsibilities:
- Monitor Defender for Cloud alert queues and posture dashboards for high-severity signals across Azure and AWS-connected environments.
- Perform initial validation (false positive screening), basic enrichment (resource identifiers, subscription/account, region, environment tags), and severity assignment.
- Triage high-impact recommendations and secure-score changes; create remediation tickets mapped to client ownership (platform/IAM/app teams).
- Escalate confirmed incidents to L2 with a complete evidence bundle (alert metadata, impacted resources, timeline, user/service principal context).
- Maintain documentation: ticket updates, SOP/runbook adherence, and shift handover notes.
- Core cloud fundamentals:
- Azure subscriptions/resource groups, RBAC concepts
- AWS accounts/regions, basic IAM concepts
- Understanding of CNAPP concepts: posture misconfiguration vs workload threat detection
- Minimum 3+ years of Cloud technology, specifically in Security engineering, or Security Monitoring roles
- Familiarity with AWS onboarding patterns into Defender for Cloud (high level), including connected environments.
- Basic familiarity with compliance frameworks (CIS/NIST/ISO) and translating findings into actionable tickets.
- Microsoft SC-200, AZ-500; AWS Security Specialty (or equivalent fundamentals).
Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.
Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search