Cloud & Infrastructure Security Architect
Tasks
- Architect secrets management standards
- Audit detection coverage and tune blind spots
- Audit serverless and cloud native deployments for security risks
- Conduct Kubernetes security audits
- Conduct deep dive security audits
- Define IaC security standards and reusable secure modules
- Define Kubernetes security architecture and cluster hardening standards
- Define and enforce cloud security benchmarks
- Define cloud incident response playbooks
- Define cloud network security standards and audit deviations
- Define cloud security architecture standards across AWS Azure and GCP
- Define container image security standards including vulnerability scanning and signing
- Define policy as code framework for continuous compliance
- Define security standards for cloud native managed services
- Define serverless security standards across AWS Lambda Azure Functions and GCP Cloud Functions
- Define service mesh security requirements
- Design cloud threat detection architecture and SIEM alert pipelines
- Design multi cloud IAM least privilege architecture
- Design zero trust architecture across cloud environments
- Enforce Kubernetes RBAC admission control and network policies
- Govern cloud security posture management CSPM
- Implement IaC scanning and security gates for CI CD pipelines
- Implement continuous cloud security audit program
- Implement runtime security architecture for containers
- Integrate cloud logs into SIEM and SOC workflows
- Lead security architecture reviews and sign offs
- Maintain cloud security risk register
- Own cloud security landing zone architecture
- Perform adversarial validation with cloud attack simulation
- Review and approve infrastructure as code templates
- Triage Kubernetes vulnerabilities and drive resolution
Perks/Benefits
- N/A
Skills/Tech-stack
AWS CDK | AWS Security | AWS Security Services | Access Management | Admission controllers | Aqua Security | Azure Security | Azure Security Center | Bicep | CIS Benchmark | CIS Benchmarks | CSA CCM | Checkov | Cilium | Cloud Incident Response | Cloud Security | Cloud Security Command Center | Cloud Security Posture | Cloud Security Posture Management | Cloud Security Posture Management CSPM | Command Center | Container Security | Cosign | Defender for | Defender for Cloud | Falco | GCP SCC | Google Cloud | Google Cloud Security | Google Cloud Security Command Center | GuardDuty | Helm | IAM | Incident Response | Infrastructure as Code | Istio | Kubernetes CIS Benchmark | Kubernetes security | Kyverno | Least Privilege | Linkerd | MTLS | NIST | Network Policy | Notary | OPA | OPA Gatekeeper | PACU | Pod Security Admission | Pod security | Policy-as-Code | Privileged Access | Privileged Access Management | RBAC | Red team | Runtime Security | SIEM integration | Secrets management | Security Center | Security Command Center | Security Services | Service Mesh | Snyk | Sysdig | Terraform | Terrascan | Tfsec | Threat detection | Trivy | Vulnerability scanning | Zero Trust | “as-code”
Education
N/A
Related jobs
-
Entry-level Full TimePune, India8h ago
-
Solution Architect Automation & DevSecOps INR 3000K-4000KAWS | Ansible | Ansible Playbook | Azure | BashSenior-level Full TimePune, India9h ago
-
Cloud Security Manager INR 800K-1700KAWS | Azure | CNAAP | CSPM | CWPPHealthcare benefits | Paid time off | Remote work | Tuition reimbursement | Wellness benefitsMid-level Full TimeIndia-Telangana-Hyderabad R9h ago
-
Cloud Security Specialist INR 2000K-3200KAWS | Access Management | Azure | Bash | CNAAPHealthcare benefits | Paid time off | Professional development | Tuition reimbursement | Wellness benefitsSenior-level Full TimeIndia-Telangana-Hyderabad R9h ago
-
Analyst IT Operations-Amazon AWS Cloud (Administrator ) INR 1500K-2000KAPI Gateway | AWS Lambda | AWS Step Functions | Amazon API | Amazon API GatewayMid-level Full TimeHyderabad, India11h ago
-
CSRS Presales and Solutions Head INR 2000K-6000KAWS | Access Management | Cloud Security | Cloud Security Posture | Cloud Security Posture ManagementExecutive-level Full TimeIndia11h ago
-
Security Track Specialist INR 1000K-2500KAccess Control | Active Directory | Azure Active Directory | Azure Key Vault | CIS BenchmarksSenior-level Full TimeIndia11h ago
-
SO_Cloud Infra Operations Specialist INR 2125K-3500KAWS | Access Management | Ansible | Azure | Azure ADSenior-level Full Timecoimbatore, India17h ago
-
Security Architect INR 1800K-3500KCheck Point | Check Point Next Generation Firewall | DNS | Firewall Log Analysis | Firewall rule managementSenior-level Full TimeHyderabad, HDC3C, India22h ago
-
Senior Cloud Security Engineer - Assistant Vice President INR 2000K-3307KAWS Lambda | Amazon EC2 | Amazon S3 | Amazon VPC | Amazon Web ServicesEducational support | Employee networks | Flexible work program | Insurance | Matching gift programSenior-level Full TimeHyderabad, India22h ago
-
Principal DevOps Engineer INR 3000K-4000KAWS | Automation | CI/CD | Cassandra | Cloud platformFlexible work arrangement | In person collaboration model | Inclusion cultureSenior-level Full TimeBengaluru, Karnataka22h ago
-
Cloud Security Engineer (Azure) INR 950K-1600KAccess Control | Active Directory | Azure Active Directory | Azure Bicep | Azure BlueprintsAnnual health checkups | Inclusive company culture | Personal accident cover | Term life cover | Tuition reimbursementMid-level Full TimeBangalore, India1d ago
-
AD CS | AD Connect | ASR | Active Directory | Application GatewaySenior-level Full TimeGurgaon, Haryana, India1d ago
-
Service Engineer INR 2000K-3500KAccess Control | Access Management | Active Directory | Azure Active Directory | Azure GraphCross-functional collaboration | Leadership development | Technical community participationMid-level Full TimePune, Gera Commerzone SEZ, India1d ago
-
Senior-level Full TimeBangalore - Indraprastha, India1d ago
-
IN_Manager_SOC_Cyber as a Service_ Advisory _Mumbai INR 800K-1250KAngular | Apache NiFi | Azure Entra | Azure Entra ID | Azure SecurityFlexible work programs | Mentorship | Wellbeing supportMid-level Full TimeAiroli, India1d ago
-
IN_Manager_SOC_Managed Services_ Advisory _Mumbai INR 800K-1700K4G | 5G | API Security | API security testing | Access ManagementMid-level Full TimeAiroli, India1d ago
-
Security Architect INR 2000K-3500KAccess Management | Cloud Security | Cloud Security Architecture | Identity and Access Management | Identity and accessSenior-level Full TimeGurugram, DDC1A, India1d ago
-
Security Architect INR 1500K-3000KAccess Management | Cloud Security | GDPR | ISO 27001 | Identity and Access ManagementSenior-level Full TimePune, PDC2C, India1d ago
-
Security Engineer INR 1971K-2772KAPI Security | Access Management | Application Firewall | Authentication | AuthorizationCareer growth | Hybrid work | Meaningful impact | Work-life balanceSenior-level Full TimeBangalore, India1d ago
-
IN_Manager_SOC_Cyber as a Service_ Advisory _Mumbai INR 800K-1250KAngular | Apache NiFi | Azure Entra | Azure Entra ID | Azure SecurityMid-level Full TimeAiroli, India1d ago
-
IN_Manager_SOC_Managed Services_ Advisory _Mumbai INR 800K-1700K4G | 5G | API Security | Active Directory | Application SecurityMid-level Full TimeAiroli, India1d ago
-
Architect I - Security Presales INR 1800K-3300KAccess Management | Azure AD | Cloud Security | Compliance Management | CybersecurityHealth benefits | Medical insurance | Professional development reimbursement | Shift allowance | Work from another locationSenior-level Full TimeHyderabad, TG, IN1d ago
-
Senior-level Full TimeNew Delhi, National Capital Territory of …1d ago
-
Principal Customer Success Architect INR 2200K-3500KAWS | Attack surface | Attack surface management | Azure | Cloud technologiesFlexible work schedule | In office collaboration modelSenior-level Full TimeBengaluru, Karnataka1d ago