drjobs Lead - Cloud Security Engineer

Lead - Cloud Security Engineer

Employer Active

1 Vacancy
drjobs

Job Alert

You will be updated with latest job alerts via email
Valid email field required
Send jobs
Send me jobs like this
drjobs

Job Alert

You will be updated with latest job alerts via email

Valid email field required
Send jobs
Job Location drjobs

Bengaluru - India

Monthly Salary drjobs

Not Disclosed

drjobs

Salary Not Disclosed

Vacancy

1 Vacancy

Job Description

As the Lead Cloud Security Engineer you will be the primary driver for securing our AWS cloud ecosystem. You will architect implement and manage our cloud security framework ensuring the protection of our infrastructure applications and data. This role requires a hands-on expert who can lead complex security initiatives provide strategic consultation on secure architecture and mentor engineers on security best practices to fortify our overall security posture.

Key Responsibilities:

  • Cloud Security Strategy: Lead the continuous enhancement of our AWS security posture by identifying risks implementing mitigation strategies and managing cloud security policies.

  • Secure Architecture & Implementation: Architect and implement robust security controls for our cloud infrastructure. Provide expert consultation on secure design for services like EC2 S3 RDS Lambda and containerized environments.

  • Automation & Policy as Code: Develop and manage security policies and infrastructure using Infrastructure as Code (Terraform/CloudFormation) and automate security operations using Python (Boto3).

  • Identity & Access Management (IAM): Own the IAM strategy including the management of roles permissions access controls and secrets management to enforce the principle of least privilege.

  • Compliance & Governance: Implement and maintain controls to ensure our cloud environment is compliant with global security and privacy standards (e.g. SOC 2 ISO 27001).

  • Security Leadership: Lead new security initiatives from conception to completion and act as a key advisor and mentor to Product and DevOps engineers on security best practices.


Qualifications :

Core Experience:

  • 7-9 years of dedicated experience within the information security domain.

  • Proven track record of designing implementing and managing security for a large-scale AWS environment.

  • Hands-on experience in a DevOps SRE or SecDevOps role is highly preferred.

  • Experience working in a global SaaS-based product environment is a significant plus.

Technical Proficiency (Required):

  • Cloud Platform: Expert-level knowledge of AWS and its core services (e.g. IAM EC2 S3 RDS Lambda VPC Security Groups KMS).

  • Infrastructure as Code (IaC): Expert hands-on proficiency with Terraform or CloudFormation.

  • Automation & Scripting: Expert proficiency in Python and the Boto3 library for AWS automation.

  • Container & Serverless Security: Strong experience with securing Docker Kubernetes and serverless architectures.

  • Operating Systems & Networking: Deep understanding of Linux/UNIX Active Directory and common network protocols (TCP/IP DNS HTTP/S).

Security Expertise:

  • Security Fundamentals: Deep knowledge of least privilege vulnerability management threat modeling and common attack vectors.

  • Identity & Data Security: Expertise in implementing and managing IAM policies SSO KMS secrets handling and data encryption.

  • Vulnerability Management: Solid understanding of application infrastructure and network vulnerabilities and their mitigation.

Core Competencies:

  • Problem-Solving: Exceptional critical thinking analytical and decision-making skills.

  • Leadership & Influence: Ability to lead security initiatives and mentor other engineers effectively.

  • Communication: Excellent written and verbal communication skills with the ability to articulate complex technical concepts to diverse audiences.

Preferred Skills & Experience:

  • Published contributions to the security community (e.g. blog posts open-source tools).

  • Experience presenting at security conferences or industry events.

  • Direct experience working with compliance privacy or IT audit functions.


Additional Information :

At Freshworks we are creating a global workplace that enables everyone to find their true potential purpose and passion irrespective of their background gender race sexual orientation religion and ethnicity. We are committed to providing equal opportunity for all and believe that diversity in the workplace creates a more vibrant richer work environment that advances the goals of our employees communities and the business.


Remote Work :

No


Employment Type :

Full-time

Employment Type

Full-time

Company Industry

About Company

Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.