Security Architect / Senior Security Engineer

Location: Pune,Maharashtra,India

((Experience - 12-15 years))

About the Role:
We are seeking a Security Architect / Senior Security Engineer with a strong engineering focus, specialized in building and securing cloud-native infrastructure. This role is integral to the design, implementation, and continuous enhancement of our security architecture. You will collaborate closely with cross-functional teams to develop security engineering solutions, focusing on Infrastructure as Code (IaC), network security, and proactive threat mitigation strategies.
This position requires an individual with extensive experience in cloud infrastructure engineering and a deep understanding of AWS security and networking services.

Key Responsibilities:
- Design & Development: Contribute to the development and maintenance of secure, scalable Infrastructure as Code (IaC) and Infrastructure from Code (IfC) solutions, enhancing DevOps and engineering platforms.
- Cloud Network Optimization: Improve cloud network performance, scalability, and resilience, especially in complex environments, utilizing AWS services like AWS Transit Gateway, Direct Connect, and Cloud WAN.
- Threat Modeling: Create and implement robust threat models and mitigation strategies. Integrate threat management throughout the Software Development Life Cycle (SDLC) and continuously monitor the threat landscape to deploy proactive defenses.
- Security Automation: Use Terraform and other tools to automate infrastructure provisioning, configuration management, and security policies, enhancing CI/CD practices.
- Security Information and Event Management (SIEM): Deploy, configure, and manage SIEM tools, intrusion detection and prevention systems (IDS/IPS), and other monitoring solutions to proactively detect and respond to threats.

Key Skills and Experience:
1. Cloud Security Expertise: In-depth knowledge of AWS security and networking services, including AWS GuardDuty, Security Hub, WAF, Firewall Manager, Transit Gateway, Direct Connect, Control Tower, and AWS Inspector. Strong understanding of network security protocols such as IPSec and SSL/TLS.
2. Infrastructure as Code (IaC): Proficiency in Terraform for managing and provisioning infrastructure. Extensive experience integrating infrastructure management with DevOps practices to enable automation and continuous integration/continuous deployment (CI/CD).
3. Network Security Architecture: Experience in designing and optimizing secure cloud networks with AWS tools, Software-Defined Wide Area Network (SD-WAN) technologies, Virtual Private Clouds (VPCs), VPNs, and load balancers.
4. Threat Modeling and Mitigation: Ability to develop threat models and proactive threat mitigation strategies within the SDLC. Knowledge of risk analysis, threat landscape monitoring, and incident response.
5. SIEM & Incident Response: Hands-on experience with SIEM systems and IDS/IPS, enabling efficient detection, monitoring, and response to security incidents and threats.