Search by job, company or skills

S

Information Specialist (Cloud Security)

Sonata Software
Pune, India
5-7 Years
Save
  • Posted 7 hours ago
  • Be among the first 10 applicants
Early Applicant

Job Description

JOB DESCRIPTION

Cloud Security Engineer

5–7 Years Experience • AWS | GCP | Azure | Linode

Job Title

Cloud Security Engineer

Department

Information Security / Cloud Engineering

Experience

5–7 Years

Employment Type

Full-Time

Location

Pune- Hybrid

Reports To

Head of Security / CISO

About the Role

We are looking for a seasoned Cloud Security Engineer to design, implement, and maintain robust security frameworks across our multi-cloud environment. In this role you will act as a subject-matter expert on cloud-native security, collaborating with engineering, DevOps, and compliance teams to embed security throughout the software delivery lifecycle. You will protect our cloud infrastructure on AWS, GCP, Azure, and Linode from emerging threats while enabling teams to build and ship securely at scale.

Key Responsibilities

Cloud Security Architecture & Design

  • Architect end-to-end security solutions across AWS, GCP, Azure, and Linode environments.
  • Design and enforce network segmentation, least-privilege IAM policies, and zero-trust architectures.
  • Define cloud security baselines, hardening standards, and reference architectures for new projects.
  • Evaluate and integrate cloud-native security services (AWS Guard Duty, Azure Defender, GCP Security Command Centre).

Security Operations & Incident Response

  • Monitor cloud environments using SIEM tools; triage and respond to security incidents promptly.
  • Conduct threat modelling, risk assessments, and vulnerability management across cloud workloads.
  • Lead cloud security incident response, post-mortems, and remediation efforts.
  • Develop playbooks and runbooks for common cloud security events.

DevSecOps & Automation

  • Integrate security scanning (SAST, DAST, SCA, IaC scanning) into CI/CD pipelines.
  • Automate security controls, compliance checks, and policy enforcement using Terraform, CloudFormation, or Pulumi.
  • Champion shift-left security practices and provide developer security enablement training.
  • Build and maintain custom security tooling and automation scripts (Python, Bash, Go).

Compliance & Governance

  • Ensure cloud environments meet regulatory requirements (SOC 2, ISO 27001, PCI-DSS, GDPR, HIPAA as applicable).
  • Manage Cloud Security Posture Management (CSPM) tools and track remediation of findings.
  • Prepare evidence and support external audits and penetration testing exercises.
  • Maintain up-to-date documentation of security controls and risk registers.

Collaboration & Advisory

  • Partner with infrastructure, platform, and product engineering teams to deliver secure-by-default systems.
  • Advise on secure architecture decisions during design reviews and sprint planning.
  • Mentor junior engineers on cloud security principles and best practices.
  • Stay current with the cloud security threat landscape and evangelise emerging best practices.

Required Qualifications

Experience

  • 5–7 years of hands-on experience in cloud security, information security, or a closely related field.
  • Demonstrable expertise in securing workloads on at least two of: AWS, GCP, Microsoft Azure, Linode (Akamai Cloud).
  • Proven track record of designing and implementing cloud security architectures in production environments.
  • Experience with containerised environments (Docker, Kubernetes) and their security controls.

Technical Skills

  • Deep understanding of cloud IAM, VPC/networking, encryption-at-rest & in-transit, key management (KMS/HSM).
  • Proficiency with Infrastructure-as-Code tools: Terraform, AWS CloudFormation, or equivalent.
  • Hands-on experience with security tools such as Prisma Cloud, Wiz, Aqua Security, Snyk, or similar.
  • Scripting/programming skills in Python, Bash, or Go for automation and tooling development.
  • Familiarity with SIEM platforms (Splunk, Microsoft Sentinel, Chronicle) and log analytics.

Knowledge Areas

  • OWASP Top 10, MITRE ATT&CK Cloud Matrix, CIS Benchmarks, and NIST CSF/SP 800-53.
  • PKI, TLS/mTLS, secrets management (HashiCorp Vault, AWS Secrets Manager, Azure Key Vault).
  • Supply-chain security, container image scanning, and software bill of materials (SBOM).
  • Regulatory and compliance frameworks: SOC 2 Type II, ISO 27001, PCI-DSS, GDPR.

Preferred Qualifications

  • Relevant certifications: AWS Security Specialty, GCP Professional Security Engineer, Azure Security Engineer Associate (AZ-500), CCSP, CISSP, or CEH.
  • Experience with service mesh security (Istio, Linkerd) and eBPF-based runtime security.
  • Familiarity with Linode / Akamai Cloud networking and security features.
  • Background in red-team or penetration testing activities on cloud environments.
  • Experience in a regulated industry (fintech, healthcare, e-commerce).
  • Contributions to open-source security projects or published security research.

More Info

Job Type:
Permanent Job
Industry:
Other
Function:
Information Security Cloud Engineering
Employment Type:
Full time

About Company

Sonata Software

Job ID: 149072373

Jobs by Skill - IT
Jobs by Skill - Non IT
International Jobs
Last Updated: 11-06-2026 01:46:41 PM
Homejobs in PuneInformation Specialist (Cloud Security)