Product Security & DevSecOps Engineer

Job Title: Product Security & DevSecOps Engineer

Chennai, India | Full-Time, On-Site | 3-6 Years | Immediate Joiners Preferred

We're looking for a hands-on engineer who can bridge cloud security, DevSecOps automation, and product security across AWS-native environments, CI/CD pipelines, and client-facing platforms. You'll work closely with product, engineering, DevOps, and SOC teams to identify, track, and remediate security risks - from code to cloud.

What You'll Do

1. AWS Security & Cloud Infrastructure

Operate AWS security services: Security Hub, GuardDuty, Inspector, Macie, IAM Access Analyzer

Manage Landing Zone / Control Tower: OUs, SCPs, account vending, centralized logging

Apply least privilege IAM, KMS encryption, VPC segmentation, and compliance controls (CIS, SOC2, ISO 27001)

Review cloud configs for public exposure, over-permissive IAM, and missing logging

2. DevSecOps & CI/CD Security

Integrate security into CI/CD pipelines (Jenkins, GitHub Actions, GitLab, Bitbucket)

Implement SAST, DAST, SCA, secrets scanning, container scanning, and IaC scanning (Checkov, Trivy, Snyk)

Build security gates to block critical vulnerabilities before deployment

IaC automation using Terraform or CloudFormation — mandatory

3. Product & Application Security

Support secure SDLC, threat modeling (STRIDE), and architecture reviews

Identify risks in authentication, authorization, APIs, JWT/OAuth2, and integrations

Assist with customer security questionnaires and audit documentation

4. Container & Kubernetes Security

Secure Docker/Kubernetes/EKS deployments: RBAC, namespace isolation, network policies, image scanning

5. Healthcare / Manufacturing Security (Good to Have)

Awareness of HIPAA, HITRUST, IEC 62443, NIST, or FDA cybersecurity guidance

Understanding of risks in connected devices, hospital integrations, and operational technology

6. AI/GenAI Awareness (Good to Have)

Awareness of AWS Bedrock, Azure OpenAI, or LLM-based cloud services

What We're Looking For

Must Have

3–6 years in AWS security, DevSecOps, cloud security, or related engineering roles

Strong AWS hands-on: EC2, VPC, IAM, S3, RDS, Lambda, EKS, CloudTrail, KMS

Terraform / CloudFormation (mandatory)

CI/CD pipeline security experience

OWASP Top 10 and API security fundamentals

Strong troubleshooting, documentation, and communication skills

Good to Have

Veracode, Snyk, Trivy, Gitleaks, Nessus, DefectDojo, Qualys, Wiz

Azure basics (VNet, Defender for Cloud, Purview)

Python / Bash scripting

CSPM tooling experience

Preferred CertificationsAWS Security Specialty · AWS Solutions Architect · CKS Terraform Associate · CompTIA Security+ · CEH · ISO 27001

You'll Thrive Here If You

Take ownership from finding to fix - no handoffs without follow-through

Can speak to engineers about code risks and to leadership about business impact

Want to grow across cloud, DevSecOps, and product security in a fast-paced MSSP

Please DM your profile if you're interested. ✨