Sr. Security Engineer Cloud Security

Hyderabad - Pakistan

Monthly Salary: Not Disclosed

Posted on: Yesterday

Vacancies: 1 Vacancy

Department:

Engineering

Job Summary

Cyara is the global leader in AI-powered customer experience assurance committed to eradicating bad CX. As the only unified platform for continuous testing and monitoring across voice digital messaging and conversational AI channels Cyara empowers hundreds of the worlds leading brands to optimize more than 350 million customer journeys every year. With enterprises rapidly deploying agentic AI systems that adapt learn and make autonomous decisions in real time Cyara provides the assurance layer that turns pilots into production-ready deploymentstesting AI agents with AI agents to catch what scripts cant. From full journey visibility to AI governance trust validation and compliance Cyara ensures every touchpoint works flawlessly and every AI interaction solves customer problems while delighting them in the process. Cyara helps businesses deliver secure friction-free and high-quality CX at scale.Interested to find out more about us Check out:

Cyaras Values:

At Cyara our values shape everything we do. Were passionate about Delivering Excellence by putting the customer first collaborating globally and always striving to improve. We take smart risks and Innovate Boldly setting new standards and learning from every experience. Integrity First is our cornerstonewe value humility authenticity and respect for diversity building trust in all we do. We Embrace Curiosity by empowering you to experiment learn and grow in a dynamic environment. At Cyara our values drive us forward shaping a culture where innovation and excellence thrive.

Cyaras Diversity Equity Inclusive and Belonging:

At Cyara we are dedicated to fostering a workplace that embodies equal opportunity and champions diversity equity inclusion and belonging (DEIB). We strive to cultivate an environment where every individual feels valued respected and empowered to bring their whole selves to work contributing unique perspectives and talents. Our commitment includes continuously evaluating and enhancing our policies practices and culture to align with our DEIB principles. We ensure a discrimination-free environment where individuals are evaluated solely on their merits and abilities regardless of legally protected statuses such as sex race color ethnicity national origin age religion disability sexual orientation gender identity veteran status or medical condition. By celebrating our differences and championing inclusivity we enrich our organization make more thoughtful decisions and drive collective success.

Job FunctionDescription:

As a Senior Cloud Security Engineer you will be responsible for designing implementing and optimizing security controls across cloud environments. You will work closely with infrastructure product and engineering teams to ensure workloads identities data and networks are securely architected monitored and maintained. This includes building scalable security automation enforcing policy-as-code strengthening identity and access practices and enabling secure-by-default cloud operations.

You will be responsible for:

Cloud Architecture & Design Designing secure-by-default cloud architectures and integrations ensuring all new infrastructure meets rigorous security standards before deployment.
Identity & Access Management (IAM) Designing and reviewing cloud IAM strategies by defining roles least-privilege policies service accounts and access boundaries across AWS Azure and GCP.
Cloud Configuration Hardening Locking down storage buckets network security groups load balancers databases and managed services to prevent accidental exposure and ensure compliance.
DevSecOps& CI/CD Security Securing the software supply chain by reviewing pipeline permissions secrets handling and artifact signing to prevent unauthorized deployments to production.
ThreatModeling& Risk Assessment Conductin threatmodelingsessions with architects toidentifystructural risks (e.g. compromised roles) and defining security requirements for new features.
Security Automation & Policy-as-CodeAWScentric security automation by developing Terraform guardrails enforcing Policy-as-Code through OPA/Conftestand AWS Service Control Policies (SCPs) and building AWS-native autoremediation workflows using AWS ConfigEventBridge Lambda and SSM Automation to ensure continuous compliance and enforcement of cloud security standards.
Security Monitoring & Alert Triage Managing the intake of alerts from CSPM SIEM and cloud-native tools (GuardDuty Defender SCC) distinguishing real threats from operational noise.
Cloud Incident Response Leading investigations into cloud-specific incidents including compromised credentials suspicious API calls crypto-mining activity or exposed resources.
Vulnerability Management Running andanalyzingscans for cloud workloads (VMs containers serverless) and prioritizing remediation based on contextual risk rather than generic CVSS scores.
Logging & Audit Readiness Ensuring cloud audit logs are enabled immutable centralized and readily available for forensic investigations and compliance audits.
Cross-Functional Advisory Serving as a subject matter expert for developer infrastructure and platform teams translating complex security requirements into practical engineering-focused guidance.

Lets talk about your skills/expertise:

Bachelors degree in computer science Information Security or a related field; advanced degree preferred.
Minimum of 8 years of experience in information security with a demonstrated focus on Cloud Security Architecture Engineering and Posture Management.
In-depth knowledge of CIS Benchmarks Cloud Security Alliance (CSA) CCM and NIST 800-53 as they apply to cloud environments.
Extensive experience with CSPM and CNAPP tools (e.g. Wiz Prisma Cloud AWS Security Hub) including their deployment tuning and integration into ticketing workflows.
Deep expertise in AWS security services (IAM GuardDuty KMS SCPs WAF) and experience securing Kubernetes (EKS) and serverless architectures.
Proven experience implementing Infrastructure as Code (IaC) security scans and Policy-as-Code (using Terraform OPA or CloudFormation) to enforce security guardrails.
Knowledge and experience with development and implementation of security controls for AI/ML infrastructure including securing data pipelines and LLM integrations.
Experience collaborating with DevOps teams to secure CI/CD pipelines and supply chain workflows (Github Actions GitLab Jenkins).
Strong analytical skills with the ability to conduct cloud forensics and support incident response for complex infrastructure compromises.
Excellent communication skills with the ability to translate technical security risks into practical guidance for developers and platform engineers.
Relevant certifications such as AWS Certified Security Specialty ISC2 CCSP (Certified Cloud Security Professional) CSA CCSK or CISSP are highly desirable.

Agencies:Thanks but weve got this one! Please no phone calls or emails to any employees of Cyaraoutside of the Talent Acquisition team. Cyaraspolicy is to only accept resumes from Agencies via theCyaraAgency Portal. Agencies must have a valid fee agreement inplaceand they must have been assigned the specific requisition to which they submit resumes by the Cyara Talent Acquisition team before submitting any CVs. Any resume submitted outside of this process will be deemed the sole property of Cyara and in the event a candidate is submitted outside of this policy is hired no fee or payment of any kind will be paid

We may use artificial intelligence (AI) tools to support parts of the hiring process such as reviewing applications analyzing resumes or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed please contact us.

Required Experience:

Senior IC

Cyaras Values:

Cyaras Diversity Equity Inclusive and Belonging:

Job FunctionDescription:

You will be responsible for:

Cloud Architecture & Design Designing secure-by-default cloud architectures and integrations ensuring all new infrastructure meets rigorous security standards before deployment.
Identity & Access Management (IAM) Designing and reviewing cloud IAM strategies by defining roles least-privilege policies service accounts and access boundaries across AWS Azure and GCP.
Cloud Configuration Hardening Locking down storage buckets network security groups load balancers databases and managed services to prevent accidental exposure and ensure compliance.
DevSecOps& CI/CD Security Securing the software supply chain by reviewing pipeline permissions secrets handling and artifact signing to prevent unauthorized deployments to production.
ThreatModeling& Risk Assessment Conductin threatmodelingsessions with architects toidentifystructural risks (e.g. compromised roles) and defining security requirements for new features.
Security Automation & Policy-as-CodeAWScentric security automation by developing Terraform guardrails enforcing Policy-as-Code through OPA/Conftestand AWS Service Control Policies (SCPs) and building AWS-native autoremediation workflows using AWS ConfigEventBridge Lambda and SSM Automation to ensure continuous compliance and enforcement of cloud security standards.
Security Monitoring & Alert Triage Managing the intake of alerts from CSPM SIEM and cloud-native tools (GuardDuty Defender SCC) distinguishing real threats from operational noise.
Cloud Incident Response Leading investigations into cloud-specific incidents including compromised credentials suspicious API calls crypto-mining activity or exposed resources.
Vulnerability Management Running andanalyzingscans for cloud workloads (VMs containers serverless) and prioritizing remediation based on contextual risk rather than generic CVSS scores.
Logging & Audit Readiness Ensuring cloud audit logs are enabled immutable centralized and readily available for forensic investigations and compliance audits.
Cross-Functional Advisory Serving as a subject matter expert for developer infrastructure and platform teams translating complex security requirements into practical engineering-focused guidance.

Lets talk about your skills/expertise:

Bachelors degree in computer science Information Security or a related field; advanced degree preferred.
Minimum of 8 years of experience in information security with a demonstrated focus on Cloud Security Architecture Engineering and Posture Management.
In-depth knowledge of CIS Benchmarks Cloud Security Alliance (CSA) CCM and NIST 800-53 as they apply to cloud environments.
Extensive experience with CSPM and CNAPP tools (e.g. Wiz Prisma Cloud AWS Security Hub) including their deployment tuning and integration into ticketing workflows.
Deep expertise in AWS security services (IAM GuardDuty KMS SCPs WAF) and experience securing Kubernetes (EKS) and serverless architectures.
Proven experience implementing Infrastructure as Code (IaC) security scans and Policy-as-Code (using Terraform OPA or CloudFormation) to enforce security guardrails.
Knowledge and experience with development and implementation of security controls for AI/ML infrastructure including securing data pipelines and LLM integrations.
Experience collaborating with DevOps teams to secure CI/CD pipelines and supply chain workflows (Github Actions GitLab Jenkins).
Strong analytical skills with the ability to conduct cloud forensics and support incident response for complex infrastructure compromises.
Excellent communication skills with the ability to translate technical security risks into practical guidance for developers and platform engineers.
Relevant certifications such as AWS Certified Security Specialty ISC2 CCSP (Certified Cloud Security Professional) CSA CCSK or CISSP are highly desirable.