Security Architect

Project Role :Security Architect

Project Role Description :Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills :DevOps

Good to have skills :NAMinimum
3 year(s) of experience is required

Educational Qualification :15 years full time education
Summary:Seeking a results-driven DevSecOps Engineer with deep experience in cloud security automation, particularly with Wiz, AWS, Terraform, and CI/CD pipelines. This role demands a strong background in security policy implementation, cloud infrastructure management, and automation of security and compliance workflows.
Roles & Responsibilities:-Developed custom REGO policies within Wiz Cloud to enforce security standards across AWS infrastructure, with a focus on Terraform and CloudFormation templates.-Ensured continuous compliance through proactive, automated security checks integrated into CI/CD pipelines.-Built an end-to-end automated compliance pipeline using Python and GitHub Actions, enabling real-time alerts for policy violations.-Integrated compliance updates directly into Confluence, improving visibility and reducing response time across teams.-Automated onboarding of GitHub repositories into Wiz, using GitHub APIs to extract data (teams, users, repos) and transform it into Terraform-compatible variables for streamlined policy enforcement.-Designed a Lambda-based automation framework to monitor Wiz CCR release notes, detect high-severity changes, and notify stakeholders via SNS, SQS, and JIRA tickets.-Maintained Confluence documentation dynamically for transparent and traceable change management.-Replaced legacy workflows (Power Automate & Jira) with a Selenium + Java-based automation framework for managing Wiz CCRs, enabling scalable, testable automation for rule creation and updates.-Hands-on experience with Amazon EC2 and RDS, including provisioning, hardening, patching, and monitoring.-Automated infrastructure tasks related to EC2 and RDS lifecycle via Terraform and CI/CD integration.-Used Postman extensively for validating Wiz APIs, GitHub APIs, and internal tools.-Created collections and automated test scripts for integration testing of security workflows.Professional & Technical
Skills:

-Cloud Security:Wiz, Rego Policies -Cloud Platforms:AWS (EC2, RDS, Lambda, SNS, SQS) -IaC:Terraform, CloudFormation-Automation & CI/CD:GitHub Actions, Python, Selenium (Java)-DevOps & Integration:GitHub API, Postman, JIRA, Confluence -Scripting:Python, Shell, Java -Proven ability to automate cloud security processes using modern DevOps tools. -Strong problem-solving skills and ability to design scalable automation frameworks. -Experience working with regulated environments and security compliance standards (e.g., CIS, NIST, ISO 27001) is a plus.
Additional Information:- The candidate should have minimum 3 years of experience in DevOps.- This position is based at our Gurugram office.- A 15 years full time education is required.Qualification
15 years full time education