Posted:23 hours ago|
Platform:
Hybrid
Full Time
We are seeking a skilled Security Analyst/Engineer to join our cloud security team. The ideal candidate will have a strong background in vulnerability assessment, remediation, and security engineering, with hands-on experience across AWS environments. You will be responsible for identifying and remediating vulnerabilities across cloud platforms, integrating with vulnerability management tools, embedding security into hardened AMI pipelines, and ensuring compliance through dashboards, automation, and governance.
Conduct vulnerability assessments using tools such as Wiz, Tenable, and SonarQube to identify risks across cloud platforms and workloads.
Map vulnerabilities by severity, remediation type (Terraform fix, code refactor, policy update), and level of effort (LOE).
Track and manage remediation efforts to ensure timely closure and risk reduction.
Integrate vulnerability scanning into AWS Image Builder pipelines and ensure hardened AMIs for Windows, Linux, Amazon Linux, and middleware workloads.
Define and enforce tagging schemas for traceability and compliance across images and container workloads.
Develop and implement security policies, procedures, and governance frameworks to enhance organizational security posture.
Collaborate with DevOps and development teams to integrate security practices into CI/CD pipelines (GitHub Actions, Spacelift).
Automate communication workflows for image releases, deprecations, and vulnerability notifications.
Build and evolve dashboards to monitor vulnerability aging, adoption, risk trends, and remediation progress.
Provide knowledge transfer to platform and security teams, enabling long-term adoption of best practices.
Ensure license compliance for BYOL workloads (e.g., Oracle, WebLogic).
Provide regular status reports and metrics to leadership and stakeholders.
58 years of relevant experience in security engineering, vulnerability management, and cloud security.
Bachelors degree in Computer Science, Information Security, or a related field.
Scripting experience: Shell, PowerShell, and some Python.
Understanding of OS hardening frameworks (CIS Benchmarks, DISA STIGs).
Strong problem-solving, analytical, and collaboration skills.
Security or cloud certifications: CISSP, CISM, AWS Certified Security, or equivalent.
Experience with policy-driven enforcement (OPA, AWS Config, SCPs).
Familiarity with monitoring/logging tools: Prometheus, Grafana, ELK stack.
Experience with container security (EKS/ECS, Docker).
Knowledge of governance and compliance frameworks (ISO 27001, NIST, SOC2).
Connectio It
Upload Resume
Drag or click to upload
Your data is secure with us, protected by advanced encryption.
Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.
We have sent an OTP to your contact. Please enter it below to verify.
hyderabad, pune, bengaluru
15.0 - 30.0 Lacs P.A.
bengaluru
2.0 - 5.0 Lacs P.A.
hyderabad, chennai, bengaluru
Experience: Not specified
2.0 - 5.0 Lacs P.A.
ahmedabad, gujarat, india
Salary: Not disclosed
gurugram, haryana, india
Salary: Not disclosed
bengaluru
3.0 - 7.0 Lacs P.A.
bengaluru
3.0 - 7.0 Lacs P.A.
mumbai
3.0 - 7.0 Lacs P.A.
mumbai
3.0 - 7.0 Lacs P.A.
kolkata
3.0 - 7.0 Lacs P.A.