Position :- Infrastructure Security Engineer
Type :- Onsite
Location :- Ahmedabad
Position Overview
We are looking for a skilled Infrastructure Security Engineer to join our cybersecurity team. The ideal candidate
will bring deep technical expertise across cloud security (especially AWS), vulnerability management, patch
management, endpoint protection, and security operations.
Key Responsibilities
AWS Cloud Security
- Design & manage IAM, security groups, NACLs, VPCs, etc.
- Configure AWS security services (CloudTrail, GuardDuty, Security Hub, etc.)
- Apply IaC security best practices (Terraform, CloudFormation, CDK)
- Regularly assess cloud security posture & recommend improvements
- Ensure compliance with SOC 2, ISO 27001, and other frameworks
Vulnerability & Patch Management
- Conduct enterprise-wide vulnerability scanning (Nessus, Qualys, Rapid7)
- Define & enforce patch management policies, SLAs, and reporting
- Coordinate remediation efforts with relevant teams
- Provide executive-level vulnerability reports
Endpoint Security
- Deploy and manage EDR tools (CrowdStrike or similar)
- Tune endpoint security controls (AV, encryption, application control)
- Investigate malware incidents & perform endpoint forensics
- Implement BYOD and MDM policies
Required Qualifications
Education & Experience
- Bachelor's in CS, IT Security, or related field
- 5+ years in information security
- 3+ years hands-on with AWS cloud security
Technical Skills
- Cloud: AWS IAM, VPC, GuardDuty, CloudTrail, etc.
- Vulnerability Mgmt: Nessus, Qualys, CVSS scoring
- Patching: WSUS, Red Hat Satellite, AWS Systems Manager
- EDR/XDR: CrowdStrike, SentinelOne, etc.
- Systems: Windows & Linux hardening
- SIEM/SOAR: Log analysis & playbook development
Certifications (preferred but not mandatory)
- AWS Certified Security Specialty
- CISSP / GCIH / CEH
Key Competencies
- Strong analytical and problem-solving skills
- Project management and cross-functional collaboration
- Strong grasp of compliance (SOC2, PCI-DSS, GDPR)
- Ability to convey technical concepts to non-tech stakeholders
Skills: edr,aws,patch management,security,nacl,cloud,vpc,xdr,cloud security
