Lead Engineer - Cloud Security Bmw Techworks India

7.0 - 10.0 years

7 - 10 Lacs

chennai, tamil nadu, india

On-site

Design, develop, and maintain security-focused backend services and APIs in Python. Implement authentication and authorization mechanisms, including IAM policies, roles, and service permissions. Build tools and frameworks to secure customer-built data pipelines, ensuring consistent, enforced security policies across the platform. Integrate with AWS security services such as IAM, KMS, Secrets Manager, CloudTrail, and GuardDuty to provide robust, automated security controls. Develop monitoring and alerting for security events, misconfigurations, and policy violations. Conduct security reviews of platform features, API designs, and infrastructure changes. Collaborate with platform engineers, data engineers, and frontend teams to deliver secure-by-default user experiences. Participate in threat modeling, architecture discussions, sprint planning, and code reviews. Contribute to automation, testing, and CI/CD pipelines to enforce security best practices in deployments. What should you bring along Strong experience with Python development, ideally in a cloud-native, serverless context. Solid understanding of AWS security services and best practices (IAM, KMS, Secrets Manager, CloudTrail, GuardDuty, SCPs, Organizations). Experience designing and consuming REST APIs with secure authentication and authorization. Familiarity with infrastructure as code (e.g. Terraform) for defining and enforcing security policies. Understanding of secure software development practices, including threat modeling, secure code reviews, and vulnerability management. Commitment to writing well-tested, maintainable code, with unit and integration testing. Familiarity with version control (Git) and CI/CD best practices. Strong communication skills and a collaborative, security-first mindset. Detail-oriented mindset. Strong problem-solving skills. Work often in CET timezone. Outstanding Analytical and Communication Skills MUST Must have technical skills Python, ideally in a cloud-native, serverless context AWS security services and best practices (IAM, KMS, Secrets Manager, CloudTrail, GuardDuty, SCPs, Organizations) Good to have technical skills Experience with AWS Organizations and SCP policy design. Background in data platform security, including protecting data lakes, catalogs, and data pipelines. Knowledge of compliance frameworks (e.g. ISO 27001, SOC 2) and audit readiness. Experience integrating monitoring and security tooling (e.g. AWS Security Hub, SIEMs, custom dashboards).

Posted 23 hours ago

Apply

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.