Key Responsibilities
Cloud & Infrastructure Security Ownership
- Own end-to-end infrastructure and cloud security across hybrid environments (on-prem and Azure)
- Act as the go-to SME for cloud and infrastructure security issues and remediation activities
- Drive resolution of vulnerabilities rather than only identifying risks
Vulnerability Management & Remediation
- Lead vulnerability triage, root-cause analysis, remediation planning, and closure tracking using tools such as Wiz
- Remediate vulnerabilities across Linux and Windows operating systems, including patching, hardening, and configuration fixes
- Address security issues in Azure Kubernetes Service (AKS) clusters, container workloads, and registries
- Fix misconfigurations across identity, networking, storage, and cloud security posture controls
Azure Security Engineering
- Design and enforce security baselines across Azure infrastructure and platform services
- Manage Azure security services, identity, RBAC, IAM governance, and privileged access controls
- Work across Azure compute, networking, storage, and platform services to ensure secure configurations
Container & Kubernetes Security
- Secure AKS clusters including node-level, cluster-level, and workload-level configurations
- Manage container image vulnerabilities and implement base image hardening practices
- Ensure registry and runtime security across containerized environments
Automation & Security Engineering
- Design and implement automation for OS hardening, patch management, and configuration drift detection
- Work with Terraform, Ansible, and other automation tools for scalable security enforcement
- Define and maintain security baselines and compliance automation frameworks
DevOps & Cross-Team Collaboration
- Partner with DevOps, platform, and application teams to embed security into CI/CD pipelines
- Support security integration into build, deployment, and operational workflows
- Provide remediation guidance and actionable runbooks for engineering teams
Audit, Governance & Advisory
- Act as security SME during audits, risk assessments, and customer security reviews
- Define IAM, RBAC, and least-privilege access strategies
- Ensure adherence to security compliance standards and organizational policies
- Mentor engineering teams on cloud security and remediation best practices
Documentation & Reporting
- Develop clear remediation documentation, runbooks, and technical guidelines
- Ensure security knowledge is well-documented and transferable across teams
