REF51085A- Azure / Cloud Security- Consultant - Information Security- Mumbai

Company Description

WNS (Holdings) Limited (NYSE: WNS), is a leading Business Process Management (BPM) company. We combine our deep industry knowledge with technology and analytics expertise to co-create innovative, digital-led transformational solutions with clients across 10 industries. We enable businesses in Travel, Insurance, Banking and Financial Services, Manufacturing, Retail and Consumer Packaged Goods, Shipping and Logistics, Healthcare, and Utilities to re-imagine their digital future and transform their outcomes with operational excellence.We deliver an entire spectrum of BPM services in finance and accounting, procurement, customer interaction services and human resources leveraging collaborative models that are tailored to address the unique business challenges of each client. We co-create and execute the future vision of 400+ clients with the help of our 44,000+ employees.

Job Description

The SME role specializing in Cloud Security will play a pivotal role in designing, implementing, and managing cloud security solutions across AWS and Azure platforms. This position requires a deep understanding of cloud security principles, architecture best practices, and a broad experience in implementing security controls and frameworks in cloud environments. The ideal candidate should have 8-14 years of experience working with cloud platforms, delivering security strategies, and managing risks for enterprise-level deployments.

Key Responsibilities:

1. Cloud Security Architecture & Design:
   • Design and implement security architecture for cloud infrastructure (AWS and Azure), ensuring robust protection for data, applications, and services.
   • Develop and maintain security standards, guidelines, and reference architectures for cloud solutions.
   • Collaborate with cloud engineering teams to define and implement secure infrastructure designs, including VPC configurations, network security, and IAM policies.
   • Create high-level architecture diagrams and technical documentation for cloud security solutions.
2. Security Implementation & Integration:
   • Deploy security solutions such as Web Application Firewalls (WAF), Cloud Security Posture Management (CSPM), Key Management Services (KMS), and Identity and Access Management (IAM).
   • Implement and manage native security services on AWS (GuardDuty, Security Hub, Inspector) and Azure (Sentinel, Microsoft Defender for Cloud, Key Vault) to enhance visibility and threat detection.
   • Configure and maintain encryption mechanisms for data at rest and in transit using cloud-native tools (KMS, AWS Secrets Manager, Azure Key Vault).
   • Lead the implementation of Identity and Access Management (IAM) policies, role-based access controls (RBAC), and least privilege access principles.
3. Security Compliance & Risk Management:
   • Ensure compliance with industry standards and regulations (e.g., ISO 27001, GDPR, HIPAA, SOC 2) as per the requirement.
   • Perform security assessments and audits for cloud environments, identifying risks, vulnerabilities, and compliance gaps.
   • Develop and enforce cloud security policies, ensuring adherence to security best practices and frameworks (NIST, CIS benchmarks).
   • Collaborate with compliance teams to align cloud security strategies with regulatory requirements and internal controls.
4. Cloud Security Monitoring & Incident Response:
   • Implement and maintain cloud security monitoring and logging solutions using services such as AWS CloudTrail, AWS Config, Azure Monitor, and Azure Security Center.
   • Establish and maintain Security Information and Event Management (SIEM) solutions for proactive threat detection and incident response.
   • Develop playbooks and automated scripts to respond to security incidents in cloud environments.
   • Act as an escalation point for cloud security incidents, performing root cause analysis and driving remediation efforts.
5. Cloud Infrastructure Management & Optimization:
   • Optimize cloud infrastructure for security, performance, and cost, leveraging services such as AWS Trusted Advisor and Azure Cost Management.
   • Implement network security controls including security groups, network security policies, VPNs, and application gateways.
   • Perform regular reviews and hardening of cloud infrastructure, ensuring security configurations are up-to-date and aligned with best practices.
6. Collaboration & Stakeholder Management:
   • Work closely with DevOps, engineering, and operations teams to integrate security into CI/CD pipelines and cloud deployments.
   • Provide technical guidance and mentorship to junior engineers and cloud security teams.
   • Collaborate with internal and external stakeholders to communicate security requirements, project status, and compliance metrics.
7. Continuous Improvement & Innovation:
   • Stay up to date with the latest cloud security trends, tools, and technologies.
   • Participate in industry forums, conferences, and training sessions to maintain expertise in cloud security.
   • Evaluate and implement new cloud security tools and services to improve the security posture of the organization.

Skills & Competencies:

• Strong knowledge of AWS and Azure security services, IAM, network security, and data protection.
• Expertise in cloud security architecture, threat modeling, and risk management.
• Proficiency in scripting and automation (Python, Terraform, CloudFormation) for security automation.
• Excellent analytical and problem-solving skills with the ability to handle complex cloud security challenges.
• Strong communication and presentation skills to convey complex technical concepts to a variety of stakeholders.

Experience:

• 8-14 years of experience in cloud security architecture, implementation, and management.
• Proven experience in managing large-scale cloud deployments and securing multi-cloud environments.

Qualifications

Qualifications:

• Bachelor’s degree in computer science, Information Technology, or a related field.
• Relevant certifications such as AWS Certified Solutions Architect, AWS Certified Security – Specialty, Microsoft Certified: Azure Security Engineer, or similar.
• Proficiency in security frameworks and standards like NIST, CIS, and ISO 27001.
• Hands-on experience in implementing and managing security controls in multi-cloud environments (AWS and Azure).