Help Center/ Cloud Adoption Framework / Cloud Adoption Framework and Practices/ Top-Level Planning/ CCoE/ Cloud Security Team
Updated on 2025-05-07 GMT+08:00
View PDF
Share

Cloud Security Team

The cloud security team is responsible for the security assurance of cloud infrastructure and cloud-based business systems. It is mainly responsible for cloud platform security solution design, access control and permission management, security monitoring and threat detection, vulnerability scanning and fixing, data encryption and privacy protection, compliance review and risk assessment, and emergency response and security incident handling. This can ensure the security, compliance, and stability of cloud-based business systems. The cloud security team usually consists of cloud security experts and security operations engineers. The following table lists their responsibilities and skill requirements.

Table 1 Roles and responsibilities of a cloud security team

Role

Responsibility

Skill Requirements

Source

Cloud security expert
  • Design and optimize the overall security solution of the cloud platform, and formulate security policies and standards.
  • Evaluate security risks of cloud infrastructure and business systems, and provide improvement solutions.
  • Design and implement identity security, network security, data security, application security, host security, and security O&M solutions.
  • Guide and review the work of security operations engineers and provide technical support.
  • Keep up with the latest security technologies and develop countermeasures.
  • Have an in-depth understanding of cloud security services and security configuration baselines of the cloud platform.
  • Be familiar with identity security, network security, data security, application security, host security, and security O&M.
  • Master security evaluation tools and penetration testing technologies.
  • Have experience in security compliance management (such as DJCP 2.0 and ISO 27001).
  • Have excellent security policy formulation and technical guidance capabilities.

IT department

Security operations engineer
  • Design and implement continuous security operations solutions.
  • Be responsible for routine security monitoring and O&M of the cloud platform, and detect and handle security events in a timely manner.
  • Perform vulnerability scanning, patch management, and security configuration hardening.
  • Implement access control, permission management, and log audit to ensure system compliance.
  • Work with cloud security experts to implement and optimize security technology solutions.
  • Write security O&M scripts to improve security operations efficiency.
  • Be proficient in using security operations services and various security monitoring tools of the cloud platform.
  • Master threat detection technologies, vulnerability scanning tools, and patch management processes.
  • Be familiar with log analysis tools and automatic script languages (such as Python and Shell).
  • Understand security configurations (such as security groups and firewall rules) of the cloud platform.
  • Be able to quickly respond to and handle security incidents.

IT department
Parent topic: CCoE