Multicloud Security Expertise (Core Requirement) Proven ability to design, review, and implement security controls across multicloud environments, including: • Cloud Identity and Access Management (IAM), least‑privilege access, and workload identity • Network segmentation, service‑to‑service authentication, and mTLS • Cloud encryption models and key management (KMS, HSM, certificate authorities) • Experience with Cloud Security Posture Management (CSPM) and misconfiguration detection. • Application & Data Protection Strong understanding of: • API security (OAuth/OIDC, token‑based auth) • Application‑level encryption, tokenization, and hashing • Data protection across storage, database, and file‑system layers • Ability to support secure software development lifecycle (SSDLC) practices, including SAST, SCA, and SBOM Risk, Compliance & Governance: • Working knowledge of security and compliance frameworks such as PCI DSS, ISO 27001, SOC 2, GDPR, or NIST.