Security Engineer

Exp : 6- 10yrs , CTC : 25 LPA , NP : max 15 days

Job Description

Role Description

This role supports and secures client's public cloud environments as the firm continues expanding its Azure- and Google Cloud Platform (GCP)-based cloud ecosystem.

The Public Cloud Security Engineer serves as a senior technical leader responsible for identifying, analyzing, and remediating vulnerabilities, misconfigurations, and exposure risks across enterprise cloud platforms. The role focuses on reducing systemic risk through proactive remediation, cloud security engineering, and close collaboration with infrastructure automation and production services teams.

This position combines cloud engineering, vulnerability management, and operational security responsibilities within highly regulated enterprise environments, ensuring cloud security controls scale effectively alongside business and platform growth.

Cloud Environment & Security Scope

Public cloud environments including:

• Microsoft Azure (primary platform)
• Google Cloud Platform (GCP) supporting data, platform, and AI workloads
• Enterprise production, pre-production, and development cloud environments
• Multi-region cloud architectures supporting global operations
• Shared responsibility security models across infrastructure, platform, and application layers

Cloud Security Focus Areas

• Cloud vulnerability management across compute, storage, identity, networking, and platform services
• Detection and remediation of:
• insecure configurations
• control drift
• exposure risks
• public access vulnerabilities
• storage and account security gaps
• Root-cause analysis and prevention of recurring security issues
• Exposure management across cloud infrastructure and enterprise workloads
• Operational cloud security engineering within regulated environments

Security Platforms & Tooling

• Vulnerability scanning and posture management platforms including Qualys and compliance tooling
• SIEM and centralized logging integrations where required
• Cloud-native security tooling and monitoring solutions
• Infrastructure and security automation via APIs and cloud-native tooling
• Centralized vulnerability reporting and remediation tracking workflows

Infrastructure & Automation

• Infrastructure as Code (IaC) and secure cloud automation practices
• Terraform and cloud-native tooling for remediation and secure configuration management
• Security integrations within infrastructure automation and operational workflows
• Python-based scripting and automation for remediation, validation, and operational support
• Collaboration with infrastructure automation and cloud engineering teams

Responsibilities

• Lead investigation and remediation of cloud vulnerabilities and exposure risks
• Detect, analyze, and resolve cloud security issues across Azure and GCP environments
• Engineer long-term remediation strategies that prevent recurrence of vulnerabilities
• Support operational cloud security initiatives in enterprise production environments
• Collaborate with production services, cloud engineering, and infrastructure automation teams
• Support security tooling onboarding, operation, and continuous improvement
• Contribute to incident response, mitigation, and post-incident remediation activities
• Maintain operational readiness and support activities requiring overlap with US-based teams
• Mentor junior engineers and promote operational security engineering best practices

Reliability, Operations & Risk

• Support stable and scalable operation of cloud security platforms
• Participate in enterprise operational support and remediation workflows
• Maintain audit-ready operational processes and remediation tracking
• Contribute to enterprise risk reduction and cloud security governance initiatives
• Operate effectively within regulated financial services environments

Required Qualifications

• Bachelor's degree in Computer Science, Information Systems, or equivalent engineering experience
• Senior-level experience supporting cloud security engineering and vulnerability remediation
• Strong hands-on experience with Microsoft Azure and Google Cloud Platform (GCP)
• Deep experience in vulnerability management, exposure reduction, and remediation engineering
• Strong understanding of enterprise cloud infrastructure and cloud security principles
• Proficiency in Python for automation and operational tooling
• Experience supporting enterprise production environments in regulated industries
• Strong troubleshooting, root-cause analysis, and remediation skills
• Ability to work independently within enterprise operational environments

Preferred Qualifications

• Financial services industry experience
• Experience with Qualys or similar vulnerability management platforms
• Familiarity with cloud posture management and compliance tooling
• Experience integrating cloud security tooling into operational workflows
• Exposure to DevSecOps and cloud infrastructure automation
• Experience supporting US-based operational teams with timezone overlap
• Experience with cloud security operations in large-scale enterprise environments