Cloud Access Security Broker (CASB) Associate

CASB - Associate

Educational qualifications

•Bachelor’s degree in Computer Science, Information Security, Information Technology, or a related discipline.•Master’s degree in Cybersecurity or Cloud Computing is a plus.•Equivalent industry experience may be considered.•

Work experience

 

•3–5 years of hands‑on experience in Cloud Security operations or engineering roles.•Strong experience with Microsoft Defender for Cloud Apps (formerly MCAS) and Netskope Security Cloud / CASB for policy configuration, DLP, threat protection, and application governance.•Experience monitoring, triaging, and responding to CASB alerts, including investigation and documentation.•Experience collaborating with SOC, IT Security, IAM, and Cloud Engineering teams.•Exposure to cloud platforms such as Microsoft Azure, AWS, or GCP is preferred.•Familiarity with API-based integrations, log analysis, and SaaS application security.•

The ideal candidate will:

•Have a deep understanding of SaaS security, Shadow IT detection, cloud access patterns, and risk-based access control.•Be able to create and optimize CASB policies (DLP, Threat Detection, Access Control, App Discovery).•Demonstrate strong analytical and problem‑solving skills when dealing with cloud security events.•Proactively identify gaps in cloud security posture and recommend improvements.•Work cross‑functionally with security architecture and compliance teams.•Produce clear documentation, runbooks, and training materials for cloud security tools.•Maintain continuous learning in cloud security trends, best practices, and evolving threats.•

Mandatory Certification Required:

•Microsoft SC-900 / SC-200 / SC-400•Netskope Certified Cloud Security Administrator (NCCSA)•Security+ (CompTIA)•Azure Fundamentals (AZ‑900)   

Technical Skills Required:

CASB & Cloud Security Tools

·Strong expertise in:oMicrosoft Defender for Cloud Apps / Microsoft CASBoNetskope CASBoDLP policy creation, access control, app discovery, session controloShadow IT governance and cloud application risk assessment

Cloud Platforms

·Good understanding of:oAzure AD / Entra ID, Identity protectionoAzure security features (Defender for Cloud, Conditional Access, MIP)oKnowledge of AWS/GCP security fundamentals (optional but beneficial)

Security Operations

·Log analysis using:oMicrosoft Sentinel, Splunk, or equivalent SIEM·Experience with:oIncident response processesoThreat detection, remediation workflowsoData protection and compliance requirements (GDPR, HIPAA, ISO 27001, etc.)

Networking & Security Concepts

·Understanding of:oZero Trust ArchitectureoSecure access service edge (SASE)oSSL inspection, reverse proxies, cloud architecture basicsoOAuth, SAML, API integrationso

Behavioral / team skills

•Strong communication skills to collaborate across teams and explain technical concepts clearly.•Ability to work independently with minimal supervision.•Detail‑oriented, organized, and able to manage multiple tasks in parallel.•Strong ownership mindset and a proactive approach to problem‑solving.•Team player with willingness to share knowledge and support team maturity.•Adaptable to fast‑paced and evolving cloud environments.

Educational qualifications

•Bachelor’s degree in Computer Science, Information Security, Information Technology, or a related discipline.•Master’s degree in Cybersecurity or Cloud Computing is a plus.•Equivalent industry experience may be considered.•

Work experience

 

•3–5 years of hands‑on experience in Cloud Security operations or engineering roles.•Strong experience with Microsoft Defender for Cloud Apps (formerly MCAS) and Netskope Security Cloud / CASB for policy configuration, DLP, threat protection, and application governance.•Experience monitoring, triaging, and responding to CASB alerts, including investigation and documentation.•Experience collaborating with SOC, IT Security, IAM, and Cloud Engineering teams.•Exposure to cloud platforms such as Microsoft Azure, AWS, or GCP is preferred.•Familiarity with API-based integrations, log analysis, and SaaS application security.•

The ideal candidate will:

•Have a deep understanding of SaaS security, Shadow IT detection, cloud access patterns, and risk-based access control.•Be able to create and optimize CASB policies (DLP, Threat Detection, Access Control, App Discovery).•Demonstrate strong analytical and problem‑solving skills when dealing with cloud security events.•Proactively identify gaps in cloud security posture and recommend improvements.•Work cross‑functionally with security architecture and compliance teams.•Produce clear documentation, runbooks, and training materials for cloud security tools.•Maintain continuous learning in cloud security trends, best practices, and evolving threats.•

Mandatory Certification Required:

•Microsoft SC-900 / SC-200 / SC-400•Netskope Certified Cloud Security Administrator (NCCSA)•Security+ (CompTIA)•Azure Fundamentals (AZ‑900)   

Technical Skills Required:

CASB & Cloud Security Tools

·Strong expertise in:oMicrosoft Defender for Cloud Apps / Microsoft CASBoNetskope CASBoDLP policy creation, access control, app discovery, session controloShadow IT governance and cloud application risk assessment

Cloud Platforms

·Good understanding of:oAzure AD / Entra ID, Identity protectionoAzure security features (Defender for Cloud, Conditional Access, MIP)oKnowledge of AWS/GCP security fundamentals (optional but beneficial)

Security Operations

·Log analysis using:oMicrosoft Sentinel, Splunk, or equivalent SIEM·Experience with:oIncident response processesoThreat detection, remediation workflowsoData protection and compliance requirements (GDPR, HIPAA, ISO 27001, etc.)

Networking & Security Concepts

·Understanding of:oZero Trust ArchitectureoSecure access service edge (SASE)oSSL inspection, reverse proxies, cloud architecture basicsoOAuth, SAML, API integrationso

Behavioral / team skills

•Strong communication skills to collaborate across teams and explain technical concepts clearly.•Ability to work independently with minimal supervision.•Detail‑oriented, organized, and able to manage multiple tasks in parallel.•Strong ownership mindset and a proactive approach to problem‑solving.•Team player with willingness to share knowledge and support team maturity.•Adaptable to fast‑paced and evolving cloud environments.

Educational qualifications

•Bachelor’s degree in Computer Science, Information Security, Information Technology, or a related discipline.•Master’s degree in Cybersecurity or Cloud Computing is a plus.•Equivalent industry experience may be considered.•

Work experience

 

•3–5 years of hands‑on experience in Cloud Security operations or engineering roles.•Strong experience with Microsoft Defender for Cloud Apps (formerly MCAS) and Netskope Security Cloud / CASB for policy configuration, DLP, threat protection, and application governance.•Experience monitoring, triaging, and responding to CASB alerts, including investigation and documentation.•Experience collaborating with SOC, IT Security, IAM, and Cloud Engineering teams.•Exposure to cloud platforms such as Microsoft Azure, AWS, or GCP is preferred.•Familiarity with API-based integrations, log analysis, and SaaS application security.•

The ideal candidate will:

•Have a deep understanding of SaaS security, Shadow IT detection, cloud access patterns, and risk-based access control.•Be able to create and optimize CASB policies (DLP, Threat Detection, Access Control, App Discovery).•Demonstrate strong analytical and problem‑solving skills when dealing with cloud security events.•Proactively identify gaps in cloud security posture and recommend improvements.•Work cross‑functionally with security architecture and compliance teams.•Produce clear documentation, runbooks, and training materials for cloud security tools.•Maintain continuous learning in cloud security trends, best practices, and evolving threats.•

Mandatory Certification Required:

•Microsoft SC-900 / SC-200 / SC-400•Netskope Certified Cloud Security Administrator (NCCSA)•Security+ (CompTIA)•Azure Fundamentals (AZ‑900)   

Technical Skills Required:

CASB & Cloud Security Tools

·Strong expertise in:oMicrosoft Defender for Cloud Apps / Microsoft CASBoNetskope CASBoDLP policy creation, access control, app discovery, session controloShadow IT governance and cloud application risk assessment

Cloud Platforms

·Good understanding of:oAzure AD / Entra ID, Identity protectionoAzure security features (Defender for Cloud, Conditional Access, MIP)oKnowledge of AWS/GCP security fundamentals (optional but beneficial)

Security Operations

·Log analysis using:oMicrosoft Sentinel, Splunk, or equivalent SIEM·Experience with:oIncident response processesoThreat detection, remediation workflowsoData protection and compliance requirements (GDPR, HIPAA, ISO 27001, etc.)

Networking & Security Concepts

·Understanding of:oZero Trust ArchitectureoSecure access service edge (SASE)oSSL inspection, reverse proxies, cloud architecture basicsoOAuth, SAML, API integrationso

Behavioral / team skills

•Strong communication skills to collaborate across teams and explain technical concepts clearly.•Ability to work independently with minimal supervision.•Detail‑oriented, organized, and able to manage multiple tasks in parallel.•Strong ownership mindset and a proactive approach to problem‑solving.•Team player with willingness to share knowledge and support team maturity.•Adaptable to fast‑paced and evolving cloud environments.

Experience Level

Senior Level