Security Engineer

7 - 12 years

15 - 30 Lacs

Posted:23 hours ago| Platform: Naukri logo

Apply

Work Mode

Hybrid

Job Type

Full Time

Job Description


Job Title: Security Analyst/Engineer

Job Summary

We are seeking a skilled Security Analyst/Engineer to join our cloud security team. The ideal candidate will have a strong background in vulnerability assessment, remediation, and security engineering, with hands-on experience across AWS environments. You will be responsible for identifying and remediating vulnerabilities across cloud platforms, integrating with vulnerability management tools, embedding security into hardened AMI pipelines, and ensuring compliance through dashboards, automation, and governance.

Key Responsibilities

Conduct vulnerability assessments using tools such as Wiz, Tenable, and SonarQube to identify risks across cloud platforms and workloads.

Map vulnerabilities by severity, remediation type (Terraform fix, code refactor, policy update), and level of effort (LOE).

Track and manage remediation efforts to ensure timely closure and risk reduction.

Integrate vulnerability scanning into AWS Image Builder pipelines and ensure hardened AMIs for Windows, Linux, Amazon Linux, and middleware workloads.

Define and enforce tagging schemas for traceability and compliance across images and container workloads.

Develop and implement security policies, procedures, and governance frameworks to enhance organizational security posture.

Collaborate with DevOps and development teams to integrate security practices into CI/CD pipelines (GitHub Actions, Spacelift).

Automate communication workflows for image releases, deprecations, and vulnerability notifications.

Build and evolve dashboards to monitor vulnerability aging, adoption, risk trends, and remediation progress.

Provide knowledge transfer to platform and security teams, enabling long-term adoption of best practices.

Ensure license compliance for BYOL workloads (e.g., Oracle, WebLogic).

Provide regular status reports and metrics to leadership and stakeholders.

Qualifications

58 years of relevant experience in security engineering, vulnerability management, and cloud security.

Bachelors degree in Computer Science, Information Security, or a related field.

Proven experience as a Security Analyst/Engineer, with focus on vulnerability assessment and remediation.

Strong knowledge of security tools: Tenable, SonarQube, Wiz

Hands-on with IaC (Terraform, CloudFormation, Ansible).

Familiarity with CI/CD tools: GitHub Actions, Spacelift, Jenkins, GitLab CI.

Exposure to AWS core services: VPC, EC2, IAM, CloudWatch.

Scripting experience: Shell, PowerShell, and some Python.

Understanding of OS hardening frameworks (CIS Benchmarks, DISA STIGs).

Strong problem-solving, analytical, and collaboration skills.

Preferred Qualifications

Security or cloud certifications: CISSP, CISM, AWS Certified Security, or equivalent.

Experience with policy-driven enforcement (OPA, AWS Config, SCPs).

Familiarity with monitoring/logging tools: Prometheus, Grafana, ELK stack.

Experience with container security (EKS/ECS, Docker).

Knowledge of governance and compliance frameworks (ISO 27001, NIST, SOC2).

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview
cta

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.

Job Application AI Bot

Job Application AI Bot

Apply to 20+ Portals in one click

Download Now

Download the Mobile App

Instantly access job listings, apply easily, and track applications.

coding practice

Enhance Your Skills

Practice coding challenges to boost your skills

Start Practicing Now
Connectio It logo
Connectio It

Information Technology

San Francisco

RecommendedJobs for You

hyderabad, pune, bengaluru

hyderabad, chennai, bengaluru