Cyber Security Analyst

Job Description

Job Title: Operational Security Engineer Network Security Company : Infrasoft Technologies ( Kiya.ai ) Location: Chennai Department: Wealth Management – IT Security (ITRCS) Experience: 5 – 7 years (only eligible) Job Purpose: As an Operational Security Engineer, you will be responsible for strengthening the security posture of Wealth Management’s global IT environment by implementing and managing security controls in the areas of cloud, infrastructure, network, application, and vulnerability management. Key Responsibilities: Cloud & Container Security Secure cloud infrastructure and container images using Docker, Kubernetes Implement cloud image hardening, secure configuration and access controls Ensure compliance with organizational cloud security policies Network & System Security Design and implement secure network architectures Apply firewall, WAF, and anti-DDoS strategies to protect network traffic Ensure endpoint and server system patching and hardening Vulnerability & Risk Management Conduct regular vulnerability assessments using tools like Qualys, Rapid7, Tanium Prioritize and remediate vulnerabilities in coordination with Dev/Infra teams Report risks and mitigation status to leadership Application Security Support Secure SDLC practices (SAST, DAST, SCA, threat modeling) Collaborate with developers to ensure secure coding practices Ensure DevSecOps integration in CI/CD pipelines Compliance & Governance Ensure compliance with ISO 27001, NIST, GDPR, PCI-DSS, HIPAA Align with regional regulators like HKMA, MAS, FINMA Define and improve security policies and procedures Cybersecurity Operations Assist in incident investigations, SIEM onboarding, and DLP monitoring Track, analyze, and mitigate cybersecurity threats across environments Contribute to regional and global reporting (dashboards, committee updates) Technical Expertise 5 - 7 years of experience in Information Security, Vulnerability Management, Cloud/Infra Security Hands-on with Qualys, Tanium, Rapid7, Docker, Kubernetes Strong knowledge of firewall, endpoint security, and network protocols Familiar with DevSecOps, CI/CD pipelines, and secure application architecture Understanding of IT security standards: ISO 27001, NIST, CIS Preferred Certifications: CISSP, CISM, CEH, CISA ISO 27001 LA, SANS, Azure/AWS Security certs Domain Experience Banking or Financial Services background (especially Wealth Management) is preferred Understanding of APAC and global regulatory environments Why Join Us? Be part of a globally recognized security team Work on cutting-edge cloud and security technologies Contribute to protecting one of the world’s largest financial institutions Embrace an inclusive culture with diversity at its core Apply Now with the subject - Cybersecurity analyst profile : kanimozhi.p@kiya.ai