Cloud Security Engineer

Job Description

Position : Cloud Security Engineer - 1. Azure (Pan India) 2. AWS(Only Pune) Top Selection & Auto Elimination Criteria: Only Immediate Joiners need to apply (0-15 days) Joiners 16-30 days might be considered >30 days joiners-Please do not apply US/Rotational Shift Cab facility : Yes only late night pick or drop(1 side only for Gurgaon Employees) Location : Gurgaon, Bangalore, Pune, Indore, Hyderabad Relevant experience range 7-9(AWS) / 9-12 years(Azure) Position : Cloud Security Engineer - Azure or AWS US Shift Must Have SKills: Azure, CCSP/Certified Cloud Security Professional, Encryption, Key Management/Azure key Vault, CSPM/Cloud Security Posture Management, Microsoft Defender for Cloud, WAF, Entra firewall, IDS/IPS, Python/Java/C++/Ruby, networking, linux, Microsoft Azure Security Engineer Associate/AZ-500, AWS JD 1: Job Title: Cloud Security Engineer Microsoft Azure (9-12 Years) We are seeking a Senior Cloud Security Engineer with 9-12 years of experience and deep specialization in Microsoft Azure to drive enterprise cloud security architecture, governance, and automation. This strategic and hands-on role will be responsible for ensuring the security and resilience of Azure environments across the organization, embedding security into CI/CD pipelines, and collaborating with stakeholders to strengthen compliance and risk posture. Key Responsibilities Architect, deploy, and optimize security tools in Azure: Microsoft Defender for Cloud , Azure Key Vault , Entra ID , Azure Firewall , WAF, and IDS/IPS. Perform continuous security assessments , vulnerability management , and misconfiguration detection across hybrid cloud environments. Implement and automate Zero Trust and least-privilege access models using Azure-native capabilities. Embed security controls and policy-as-code into infrastructure-as-code templates and DevOps pipelines (Bicep, ARM, Terraform). Conduct threat modeling , architecture reviews , and provide actionable recommendations for securing workloads. Tune SIEM alerts and conduct root cause analysis for incidents via tools such as Microsoft Sentinel and Splunk . Lead incident response efforts and build standardized runbooks, playbooks, and documentation. Collaborate with engineering, compliance, and leadership to shape Azure security strategy, drive remediation, and enforce policy governance. Mentor and guide junior team members on cloud security best practices and emerging trends. Required Skills & Experience 9-12 years of total experience, with 5+ years in Azure cloud security. Proven expertise in: Microsoft Defender for Cloud , Azure Key Vault , Entra ID , Azure Firewall, WAF, IDS/IPS. Scripting (Python, Java, C++, or Ruby) for automation. Linux/Unix administration , cloud networking, encryption, and IAM. Log management and SIEM (Microsoft Sentinel, Splunk). Integrating security into CI/CD pipelines. Strong grasp of security frameworks: ISO 27001, NIST CSF, SOC 2 . Strong SQL query capability and understanding of database security. Education & Certifications Bachelors degree in Computer Science, Information Security, or related field. Must-Have Certifications : Microsoft Azure Security Engineer Associate (AZ-500) CCSP Certified Cloud Security Professional ___________________________________________________________________________________________ JD 2: Cloud Security Specialist AWS (7-9 Years) We are hiring a Cloud Security Specialist (AWS) with 7-9 years of experience to lead the design and implementation of secure cloud environments and services. This role focuses on embedding robust security across Redaptives AWS infrastructure, integrating security automation into DevOps, and ensuring compliance with leading standards. This is a hands-on and strategic role that will be central to our cloud transformation. Key Responsibilities Cloud Security Architecture & Governance Design and enforce cloud-native security architectures for AWS environments using best practices and frameworks. Implement Zero Trust , least privilege access , and secure-by-design principles across workloads. Maintain and evolve cloud security standards, policies, and guardrails across services and regions. DevSecOps & Automation Integrate security checks and policy enforcement into CI/CD pipelines (Jenkins, GitHub Actions, GitLab CI). Automate compliance validation, secret scanning, and IaC security (Terraform, CloudFormation). Build and maintain security-as-code templates and enforcement pipelines. Monitoring & Threat Response Configure and manage AWS-native services: CloudTrail , GuardDuty , Security Hub , Macie , Inspector . Tune and manage log forwarding to SIEM platforms and build detection playbooks. Conduct proactive threat hunting and coordinate incident response activities. IAM & Identity Governance Design and manage IAM strategies with fine-grained permissions, permission boundaries, and access reviews. Implement SSO integrations and enforce secure service-to-service authentication . Compliance & Risk Ensure compliance with SOC 2 , NIST , ISO 27001 , and internal audit requirements. Conduct security risk assessments and provide mitigation strategies and dashboards. Required Skills & Experience 79 years in cybersecurity with 5+ years focused on AWS cloud security . Strong knowledge of: AWS IAM, KMS, GuardDuty, CloudTrail, Security Hub Infrastructure as code (Terraform, CloudFormation) DevSecOps principles, policy-as-code, automated remediation Scripting (Python, Bash, etc.) for security automation Working experience with container and serverless security (ECS, Lambda, EKS). Knowledge of CSPM, CWPP, and cloud-native compliance controls. Education & Certifications Bachelor’s degree in Cybersecurity, Computer Science, or related discipline. Must-Have Certifications : AWS Certified Security – Specialty CCSP or CISSP Preferred Traits Experience implementing Zero Trust architecture in AWS. Familiarity with secrets management (e.g., AWS Secrets Manager, Vault). Deep knowledge of AWS cost-optimization with security in mind. Strong cross-team collaboration and documentation skills. ____________________________________________________________________