10 Cspm Jobs

What You'll Do Join us in building a secure, scalable, and experienced platform to support Avalara's expanding business and global customer base. As a Senior Application Security Engineer , you'll work with world-class engineers and architects to ensure security is embedded in everything we buildboth in today's systems and the future of our architecture. This role is perfect for someone passionate about automation, cloud-native security, and AI-driven application defense . You'll help shape the future of Avalara Security , driving security as code, ensuring automation-first practices, and integrating modern AI tooling into security workflows. You understand the value of developer empathy, moves quickly without sacrificing quality, and excels in an environment that combines startup energy with enterprise scale. Job Responsibilities You will build, maintain, and continuously improve an automated security pipeline framework integrated into our CI/CD environments. You will lead development of Infrastructure-as-Code and Policy-as-Code for application security enforcement and consistency across environments. You will evaluate and integrate security tools (SAST, DAST, SCA, CSPM, EDR) and AI-based solutions into engineering workflows and CI/CD pipelines. You will provide applicable guidance and mentorship to development and Avalara Security engineering teams on secure development best practices. Investigate, prototype, and apply AI/ML-based solutions for application behavior analysis, anomaly detection, and threat hunting. Promote security by design across the organization, and help foster a security-first culture. Contribute to the continuous refinement of the SDLC to ensure security is smooth, consistent, and measurable. What You'll Need to be Successful Required Qualifications 8+ years of experience in application security, secure software development , or security engineering. Strong programming proficiency in Python and GoLang (hands-on). Experience with secure SDLC practices and CI/CD pipeline integration. Strong hands-on experience with Kubernetes , container security, and cloud infrastructure security preferably AWS and GCP . Experience with Infrastructure-as-Code (IaC) tools like Terraform or CloudFormation. Working knowledge of cryptographic protocols and standards: TLS, OAuth, SAML, JWT , etc. Familiarity with Git , modern source control practices, and agile development methodologies. Experience working with a broad range of security tools , including: Tenable , Wiz (Cloud Security Posture Management) Checkmarx , Mend (SAST, SCA) Acunetix , Burp Suite (DAST) CrowdStrike (EDR/XDR) Bachelor's Degree in Computer Science, Engineering, or a related field. Proven experience contributing to security automation efforts within a security organization like Avalara Security . Experience with AI/ML tools and frameworks applied to application security or behavior analytics. Security certifications such as OSWE, CSSLP, AWS Security Specialty, or Kubernetes Security Specialist. Passion for enabling developer-friendly security solutions and maximum automation.

Roles & Responsibilities:- Design and implement secure AWS cloud architectures aligned with business and compliance requirements. Automate security controls and integrate them into CI/CD pipelines Manage and monitor AWS security tools such as GuardDuty, Security Hub, and CloudTrail Develop and enforce IAM policies using least privilege principles Conduct threat modeling, vulnerability assessments, and cloud security posture evaluations Ensure compliance with standards like SOC 2, ISO 27001, and NIST Support audit readiness and implement risk treatment plans Collaborate with DevOps teams to embed security in cloud deployments Promote DevSecOps culture across development and operations teams Create and maintain security-as-code using CloudFormation, Terraform, and scripting Automate detection, remediation, and incident response processes Provide security guidance during cloud migrations and new service adoptions Qualification:- Bachelors in Cybersecurity, Computer Science, or related field (Masters preferred) 7+ years in cybersecurity, with 5+ years in cloud security Strong expertise in AWS security tools (GuardDuty, Security Hub, IAM, KMS, CloudTrail) Familiar with cloud security frameworks (AWS Well-Architected, NIST CSF, CSA CCM) Experience in securing CI/CD pipelines and implementing IaC security (CloudFormation/Terraform) Hands-on with CSPM tools and automated security validation Deep understanding of IAM principles and DevSecOps practices Proficient in scripting (Python, Bash) for automation Strong knowledge of network, container, and serverless security Excellent communication skills (verbal and written) Certifications: AWS Security Specialty, CCSP, CISSP, or equivalent Preferred Qualifications :- Experience with multi-cloud (AWS, Azure, GCP) security Understanding of regulatory frameworks (e.g., GDPR, HIPAA, ISO) Hands-on with container security (Docker, Kubernetes, ECS/EKS) Experience with Zero Trust security models in cloud Familiarity with automated incident response and cloud-native tools Knowledge of Hashicorp Vault or similar tools for secrets management Experience securing data lakes and analytics platforms Worked with CWPP and serverless security best practices Cloud security experience in energy efficiency/sustainability domains Experience in cloud threat modeling and collaborating with global teams

Role & responsibilities Good interpersonal skills (written and oral communication) and ability to articulate complex issues Ability to communicate technical information clearly and concisely, commensurate with the audience Conceptual thinking and communication skills the ability to conceptualize complex business and technical requirements into comprehensible models and templates. Good communicator (written and verbal) and listener. Must be a team player and motivated self-starter with ability to work independently with limited supervision. Must be assertive, methodical and detail oriented Technical Experience: Must have worked on Palo Alto Prisma cloud Experience in cloud security and understanding of basic principles Experience in CSPM, CIEM, and CWP Knowledge of cloud service providers (majorly Azure and GCP) and their technologies Mandatory skill sets: Palo Alto Prisma Cloud Preferred skill sets: CSPM , CIEM , CWP , Azure & GCP

Job Title: Cloud Security Department: Technology Consulting Location: Gurgaon Overview: We are seeking a highly skilled and experienced Cloud Security Manager to join our team. The ideal candidate will be responsible for overseeing the development, implementation, and maintenance of cloud security measures to protect the organization's cloud-based assets. The Cloud Security Manager will work closely with various teams to ensure compliance with industry standards and regulatory requirements. Key Responsibilities: Develop and implement cloud security policies and procedures to protect the organization's cloud-based assets Monitor and analyze security vulnerabilities and threats in the cloud environment Conduct regular security assessments and audits to identify and address potential risks Collaborate with cross-functional teams to ensure compliance with industry standards and regulatory requirements Manage incident response and resolution processes related to cloud security incidents Stay up-to-date on the latest security trends and technologies to enhance the organization's cloud security posture Qualifications: Bachelor's degree in Computer Science, Information Technology, or related field Certified Network Associate in Cloud Security (CNAPS) certification Certified Security Professional Manager (CSPM) certification Minimum of X years of experience in cloud security management in a large enterprise environment Strong knowledge of cloud security best practices, tools, and technologies Excellent communication and interpersonal skills Ability to work effectively in a fast-paced and dynamic environment

Role & responsibilities Detection Engineering & Rule Management Design, implement, and maintain robust SIEM detection rules to identify security threats and anomalies. Configure and optimize Web Application Firewall (WAF) rules to protect against web-based threats. Build and enhance automated detection workflows, integrating with existing security tools to improve threat detection and response efficiency. Cloud Security and Misconfiguration Management Identify and remediate security misconfigurations in AWS, GCP, and Kubernetes environments. Partner with DevOps teams to embed security best practices in cloud and CI/CD workflows. Implement and monitor security controls to ensure adherence to compliance standards and frameworks. SOC Processes Lead the development and execution of SOC processes, including incident response plans, escalation procedures, and playbooks. Manage shift/on-call schedules to ensure 24/7 SOC coverage and efficiency in operations. Mentor and upskill junior SOC analysts, fostering a culture of continuous learning and improvement. Automation and Programming Leverage Python to automate security tasks, enhance detection workflows, and reduce operational overhead. Create custom scripts and tools to address complex security challenges efficiently. Threat Intelligence and Reporting Incorporate threat intelligence feeds into detection systems to proactively identify emerging threats. Generate detailed security metrics, reports, and dashboards for stakeholders to track SOC performance and risks. Collaboration & Stakeholder Engagement Collaborate with engineering, IT, and DevOps teams to align security strategies with business goals. Serve as the point of contact for major incidents and ensure timely resolution Preferred candidate profile Experience 7-9 years of experience in SOC operations, with at least 2 years in a lead role. Technical Expertise Proficient in operating SIEM platforms and rule creation. Strong experience with WAFs (e.g., AWS WAF, Cloudflare) and related configurations. In-depth knowledge of cloud platforms (AWS/GCP) and Kubernetes security. Familiarity with DevOps tools like Jenkins, GitHub Actions, and Terraform. Familiarity with CSPM and CNAPP tools would be an added advantage. Hands-on experience with Python or any general purpose language for automation, scripting, and task optimization. Soft Skills Good leadership, problem-solving, and communication skills. Strong analytical abilities and attention to detail. Shift Requirements This position may involve on-call work to ensure 24/7 SOC coverage. Candidates must be willing to adapt to rotating schedules and provide support during off-hours when required. Work Type Full-Time In-Office only Perks and benefits

Role & responsibilities 6-8 Yrs years of combined IT and hashtag security work experience with a broad range of exposure to cybersecurity, systems analysis, application development and/or systems administration and 3+ years of configuration Mgmt. experience. Some cloud knowledge like Microsoft Azure , Cloud/Endpoint, Prisma, Wiz or similar CSPM/ CNAPP Familiarity with SANS Top 25 controls, OWASP Top 10 and/or MITRE ATT&CK framework Preferred candidate profile Familiarity with SANS Top 25 controls, OWASP Top 10 and/or MITRE ATT&CK framework Perks and benefits

Bachelors degree in computer science, Information Technology, Information Security, or related field (or equivalent experience) Knowledge on Splunk, Firewall, and any Security tools along with CloudFlare WAF Knowledge on Cloud Security Experience working in a technical support or helpdesk role is preferred Familiarity with enterprise security tools such as SIEM, IDS/IPS, EDR, web application firewall, identity and access management solutions, etc. Basic understanding of networking concepts and protocols (TCP/IP, DNS, DHCP, etc.) Proficiency in at least one scripting language (e.g., Python, PowerShell) is a plus Certifications such as CompTIA Security+, CISSP, CCSP or GIAC are advantageous but not required Ability to prioritize and manage multiple tasks simultaneously Strong problem-solving skills and a methodical approach to troubleshooting Adaptability and willingness to learn new technologies and processes Commitment to providing exceptional customer service and support.

*Bachelors degree in computer science, Information Technology, Information Security, or related field (or equivalent experience) *Knowledge on Splunk, Firewall, and any Security tools along with CloudFlare WAF *Knowledge on Cloud Security * Experience working in a technical support or helpdesk role is preferred * Familiarity with enterprise security tools such as SIEM, IDS/IPS, EDR, web application firewall, identity and access management solutions, etc. * Basic understanding of networking concepts and protocols (TCP/IP, DNS, DHCP, etc.) * Proficiency in at least one scripting language (e.g., Python, PowerShell) is a plus * Certifications such as CompTIA Security+, CISSP, CCSP or GIAC are advantageous but not required * Ability to prioritize and manage multiple tasks simultaneously * Strong problem-solving skills and a methodical approach to troubleshooting * Adaptability and willingness to learn new technologies and processes * Commitment to providing exceptional customer service and support

Role & responsibilities Responsible for securing cloud-based workloads, ensuring the deployment of security controls, and overseeing threat detection mechanisms across our Azure environment, will actively monitor, analyze, and respond to security incidents affecting cloud workloads. Leverage MCAS to implement and manage Cloud Access Security Broker (CASB) solutions, providing visibility into the usage of cloud applications, enforcing governance policies, and mitigating risky behaviors or configurations. Ensure continuous assessment and improvement of the security posture of the organizations cloud infrastructure using tools like Microsoft Defender for Cloud, configure and monitor cloud security best practices. Manage the implementation and enforcement of conditional access policies within the Azure environment to secure access to applications and data based on specific conditions such as user location, device compliance, and risk levels. Participate in security incident response efforts, utilizing your knowledge of cloud environments to help identify the source and scope of threats, collaborate with internal teams to improve threat detection and mitigation strategies, ensuring that the cloud security posture aligns with industry standards and regulatory requirements. Work closely with cross-functional teams to ensure that security policies are integrated into the development, deployment, and operations of cloud-based applications. Additionally, contribute to documentation, creating reports on security posture, risk assessments, and incident responses to help management make informed decisions. Preferred candidate profile Proven hands-on experience securing workloads in Microsoft Azure, with a focus on cloud workload protection strategies. Strong proficiency in managing and implementing Microsoft Cloud App Security (MCAS) for CASB functionality, ensuring proper visibility and control over cloud app usage. Expertise in Azure security services, including but not limited to Microsoft Defender for Cloud, Azure AD, and Azure PIM. In-depth experience with implementing and managing conditional access policies in Azure AD, including risk-based policies and enforcement mechanisms. Experience with cloud security posture management, performing risk assessments, and applying security best practices to meet compliance and regulatory standards. Solid understanding of cloud-native security controls, identity and access management, and threat protection in the context of Azure and multi-cloud environments.

Key Responsibilities: Analyze findings, facilitate closure, and escalate aged issues as needed Report status updates to stakeholders and represent the team in review meetings Collaborate with finding owners to ensure timely resolution of action items Develop and manage program documentation Support stakeholder communications and ensure smooth coordination Assist in setting up and managing an infosec team Aid in root cause assessments for repeat issues and recommend remedial actions Identify process improvement areas and potential automation opportunities Strong critical analysis and problem-solving skills Excellent communication and documentation abilities Ability to work independently and deliver high-quality work products Consistent display of technical proficiency and ability to lead teams when required Familiarity with working under pressure and meeting stringent deadlines Demonstrate integrity, values, principles, and work ethic while leading by example >> Requirements: Bachelor's degree in Information Technology or related field 1 -3 years of experience in program execution, remediation, or related fields Good knowledge of various technologies, operating systems, databases, networks, mainframes, middleware, and cloud Technology processes and risk skills to contribute to infrastructure technology audits Prior experience in Banking/Fintech sector preferred Understanding of risk, controls, Audit Methodologies, and experience in security practices Exposure to Power Apps or other automation skills is an added advantage