- Experience : 4 - 7 Years

- Location : "Bangalore, Mumbai, or Gurgaon (Hybrid / Work from Office)"

- Mandatory Background : "B.Tech/M.Tech from IIT, NIT, BITS Pilani, or IIIT"

- The Company : High-Growth B2B AI SaaS

About the Role :

We are seeking a highly experienced Senior Cloud Security Engineer to own the security posture of our entire B2B AI SaaS platform and infrastructure. This is a crucial, high-stakes role responsible for designing, implementing, and automating security controls across our cloud environment. You will be instrumental in ensuring compliance, preventing breaches, and maintaining the trust required to serve large enterprise clients globally.

Key Technical Responsibilities :

1. Cloud Security Architecture & Policy :

- Design & Implementation : Design and implement robust security architecture within AWS (or other cloud environments), focusing on identity and access management (IAM), network segmentation, and secure configuration management.

- Security as Code (SaC) : Automate the enforcement of security policies and configurations using Infrastructure as Code (Terraform/CloudFormation) and continuous security monitoring tools.

- Compliance : Lead the technical implementation required for enterprise compliance standards (e.g., SOC

2, ISO 27001, GDPR), ensuring that security controls are auditable and effective.

2. Application and Data Security :

- DevSecOps Integration : Embed security tools and processes directly into the CI/CD pipeline (DevSecOps), including static and dynamic application security testing (SAST/DAST) and vulnerability scanning for code and containers.

- Data Protection : Implement advanced data protection mechanisms, including encryption at rest and in transit, key management (KMS), and data loss prevention (DLP) across the platform and data lakes.

- Container Security : Secure our Kubernetes clusters and Docker containers, focusing on runtime protection, least-privilege configurations, and image scanning.

3. Threat Detection and Incident Response :

- Monitoring & Alerting : Configure and manage cloud native and third-party security monitoring tools (e.g., AWS GuardDuty, Security Hub, SIEM solutions) to detect threats in real-time.

- Incident Response : Develop and practice cloud-specific incident response procedures to quickly contain, eradicate, and recover from security incidents.

What You'll Bring (Mandatory Skills & Experience) :

- Educational Excellence : B.Tech/M.Tech in Computer Science or a related discipline from an IIT, NIT, BITS Pilani, or IIIT is mandatory.

- Experience : 4-7 years of dedicated experience in cloud security, security engineering, or DevSecOps roles, preferably within a high-security SaaS or FinTech environment.

- Cloud Expertise : Deep, hands-on knowledge of security services and best practices within AWS (e.g., IAM, VPC, Security Hub, WAF).

- Core Tools : Strong practical experience with IaC (Terraform), Kubernetes security, and integrating security tools into the CI/CD pipeline.

- Certifications (Preferred) : Certifications like AWS Certified Security Specialty, CISSP, or CISM are a plus.

Logistics and Compensation :

- Location : This is a Hybrid Work / Work from Office Only position in Bangalore. No remote options are available.

- Compensation : Highly competitive compensation package in the range of ?45 LPA - ?75 LPA + significant ESOPS, commensurate with experience and deep security domain expertise.