Cloud Security Specialist (CNAPP, CSPM, CIEM, CWP)

Applied Materials' IT organization has a long reputation of being a great place to work. The IT team has been recognized as one of Computerworld's 100 Best Places to Work in IT nine times. In addition, numerous Applied IT leaders have been honored as a CIO Magazine's Ones to Watch or Computerworld Premier 100 IT leaders.

This position is an onsite job located at our Austin, TX campus.

The candidate must possess a deep understanding of cloud security frameworks and best practices across multiple cloud platforms, including AWS, Azure, and Google Cloud Platform (GCP). They will be responsible for identifying and mitigating risks, as well as maintaining security vigilance across all cloud environments.

Key responsibilities include the continuous monitoring and assessment of security risks using tools such as CNAPP, CSPM, CIEM, and other relevant technologies. This role is crucial in strengthening Applied's cloud security posture and safeguarding its digital assets.

• Continuously monitor and assess cloud configurations to ensure compliance with security best practices.
• Identify and remediate misconfigurations in cloud environments (e.g., AWS, Azure, Google Cloud).
• Implement automated tools to maintain a robust security posture.

• Secure workloads across virtual machines, containers, and serverless environments.
• Perform vulnerability assessments and runtime protection for cloud workloads.
• Collaborate with DevOps teams to integrate security into CI/CD pipelines.

• Manage and monitor cloud resource entitlements to reduce access risks.
• Implement least-privilege access policies and ensure compliance with identity and access management (IAM) standards.
• Detect and remediate identity anomalies in cloud environments.

• Oversee the security of cloud-native applications throughout their lifecycle, from development to production.
• Integrate and manage CNAPP solutions to unify CSPM, CWP, and CIEM functionalities.
• Conduct threat modeling and risk assessments for cloud-native applications.

• Strong understanding of cloud platforms (AWS, Azure, GCP) and their security features.
• Hands-on experience with CSPM, CWP, CIEM, and CNAPP tools (e.g., Prisma Cloud, Orca Security, Tenable, etc.).
• Knowledge of containerization and orchestration tools (e.g., Docker, Kubernetes).
• Proficiency in scripting and automation (e.g., Python, Terraform).

• Certifications such as AWS Certified Security - Specialty, Azure Security Engineer, or Google Professional Cloud Security Engineer.
• Experience with DevSecOps practices and integrating security into CI/CD pipelines.
• Strong analytical and problem-solving skills to address complex cloud security challenges.