Infra & Cloud Security SME Function: Infrastructure Engineering Location: Bangalore, India Experience: 10-12 Yrs Role Summary Owns infrastructure and cloud security across on-prem and Azure-centric environments, with strong hands-on ownership of vulnerability remediation. This role goes beyond recommendations. You will diagnose, solution, and fix security issues across Linux, Windows, AKS, and container platforms, while shaping security standards and automation at scale. You are the go-to SME for cloud and infra security. When vulnerabilities surface, you drive them to closure. Key Responsibilities
Lead hands-on vulnerability remediation across cloud, on-prem, and hybrid environments. This includes analysis, solutioning, implementation, and validation.
Own vulnerability management using Wiz, including triage, root-cause analysis, remediation planning, and closure tracking.
Remediate vulnerabilities across: o Linux and Windows OS (patching, hardening, configuration fixes) o Azure Kubernetes Service (AKS) clusters o Container images and registries
Design and enforce security baselines for Azure infrastructure, compute, and platform services.
Drive remediation for misconfigurations across ACS / cloud security posture controls, storage, networking, and identity.
Partner with DevOps, platform, and application teams to embed security into build and deployment workflows.
Design and automate: o OS and image hardening o Patch management workflows o Configuration drift detection and compliance checks
Define and maintain IAM, RBAC, and privileged access controls.
Act as the primary security SME during audits, risk reviews, and customer security assessments.
Create clear remediation documentation, runbooks, and security recommendations that teams can execute.
Mentor engineers on practical cloud security, OS hardening, container security, and remediation best practices. Technical Competencies
Strong hands-on experience with Wiz for cloud and infrastructure vulnerability management.
Deep expertise in Linux and Windows OS security, including: o OS hardening o Patch remediation o Kernel, package, and configuration-level fixes
Proven experience remediating vulnerabilities on AKS clusters, including node security, cluster configuration, and workload-level issues.
Solid understanding of container security, including: o Image vulnerabilities o Base image hardening o Registry and runtime security considerations
Strong working knowledge of Azure security services, identity, networking, and storage security.
Experience with Terraform, Ansible, and automation-driven remediation.
Clear understanding of cloud security posture management, IAM governance, and least-privilege access models. Behavioral Competencies
Takes ownership and drives issues to closure.
Thinks in solutions, not just findings.
Communicates clearly with engineers, architects, and stakeholders.
Comfortable leading remediation discussions with customers and internal teams.
