Senior Security Engineer

About Us:

 Paytm is India's leading mobile payments and financial services distribution company. Pioneer of the mobile QR payments revolution in India, Paytm builds technologies that help small businesses with payments and commerce. Paytm’s mission is to serve half a billion Indians and bring them to the mainstream economy with the help of technology.

Role Overview

We are seeking a highly skilled Senior Cloud Security Engineer with deep expertise in AWS

to strengthen our cloud security program. The ideal candidate will be responsible for designing,

implementing, and maintaining cloud security posture controls, ensuring compliance with

regulatory frameworks, and driving best practices across our AWS environment. This role

requires a blend of cloud security engineering, compliance, automation, and incident

response expertise.

Key Responsibilities

Cloud Security Posture Management

● Design, deployment, and tuning of CSPM tools (Prisma/Cortex) to continuously monitor

AWS cloud environments.

● Define, implement, and enforce cloud security guardrails for IAM, networking, storage,

compute, serverless, and managed services.

● Analyze CSPM findings, prioritize risks, and work with application and DevOps teams to

remediate misconfigurations.

● Automate policy checks and remediation workflows for recurring misconfigurations.

Cloud Security Engineering

● Architect secure-by-design AWS environments aligned with CIS, NIST, ISO 27001,

and other industry frameworks.

● Implement least privilege IAM roles and policies, multi-account governance, and

Service Control Policies (SCPs).

● Design secure architectures for VPC, security groups, NACLs, private endpoints,

and transit gateways.

Compliance & Risk Management

● Map CSPM findings to compliance frameworks (CIS,ISO 27001, SOC 2, GDPR,

PCI-DSS, HIPAA).

● Partner with compliance and audit teams to ensure cloud environments meet required

regulatory and organizational standards.

● Provide metrics, dashboards, and executive-level reporting on cloud risk posture.

● Build custom policies, rules, and playbooks for CSPM tools.

● Develop and maintain Terraform/CloudFormation templates with security best

practices baked in.

Threat Detection & Response

● Collaborate with SOC and IR teams to triage and respond to cloud security incidents.

● Leverage CSPM and CWP (Cloud Workload Protection) tools for detecting anomalous

activity.

● Conduct forensic analysis and root cause investigations of misconfigurations and

security breaches.

Required Qualifications

●3–5 years of experience in cloud security and engineering, with at least 3+ years

focused on AWS.

● Strong hands-on knowledge of AWS services: IAM, VPC, EC2, S3, EKS, RDS, Lambda,

CloudTrail, GuardDuty, Security Hub.

● Practical experience with CSPM tools (Prisma Cloud, Cortex Cloud.).

● Strong grasp of cloud governance, compliance, and risk frameworks (CIS AWS

Foundations, NIST CSF, ISO 27001).

● Proficiency with IaC (Terraform, CloudFormation, CDK).

● Experience with automation and scripting (Python, PowerShell, Bash).

● Familiarity with container/Kubernetes security (EKS, ECS).

● Knowledge of incident response in cloud environments.

● Excellent problem-solving, communication, and stakeholder management skills.

● Certification of AWS Certified Security - Specialty is preferred

Soft Skills

● Strong analytical mindset with attention to detail.

● Ability to translate technical risks into business impact.

● Proactive and self-driven, able to work independently and in cross-functional teams.

● Comfortable in a fast-paced, cloud-native environment.

Why join us

●       Because you get an opportunity to make a difference, and have a great time doing that.

●       You are challenged and encouraged here to do stuff that is meaningful for you and for those we serve.

●       You should work with us if you think seriously about what technology can do for people.

●       We are successful, and our successes are rooted in our people collective energy and unwavering focus on the customer, and that's how it will always be.

Compensation

 If you are the right fit, we believe in creating wealth for you. With enviable 500 mn+ registered users, 21 mn+ merchants and depth of data in our ecosystem, we are in a unique position to democratize credit for deserving consumers & merchants – and we are committed to it. India’s largest digital lending story is brewing here. It’s your opportunity to be a part of the story!