Job Title

Hiring: Security Engineer – Team Lead (Cloud & DevSecOps) Experience: 5–7 YearsWe are seeking a highly skilled Security Engineer – Team Lead with strong expertise in AWS Cloud Security and DevSecOps practices. The ideal candidate will have extensive hands-on experience securing cloud-native and production-grade AWS environments, leading security initiatives, and mentoring a small team while remaining deeply involved in technical execution. This role requires strong experience in vulnerability management, application and cloud security, and working with modern cloud security platforms such as WAF solutions, CSPM tools, and Wiz. Key Responsibilities: Cloud Security (AWS – Core Focus) ● Design, implement, and maintain security controls across multi-account, production AWS environments. ● Secure AWS services including IAM, EC2, EKS, ECS, S3, RDS, Lambda, VPC, CloudFront, and Route 53. ● Implement AWS security best practices aligned with CIS Benchmarks and the AWS Well-Architected Framework (Security Pillar). ● Configure and manage AWS Shield (Standard & Advanced) for DDoS protection. ● Monitor, investigate, and respond to security alerts using AWS GuardDuty, Security Hub, CloudTrail, CloudWatch, and VPC Flow Logs. DevSecOps & Application Security ● Integrate security controls into CI/CD pipelines following DevSecOps principles. ● Implement and manage SAST, DAST, SCA, and IaC scanning (Terraform / CloudFormation). ● Work closely with DevOps and engineering teams to remediate security issues early in the SDLC. ● Automate security checks and enforcement using scripting and infrastructure automation. Vulnerability Management ● Lead end-to-end vulnerability management programs across cloud, application, and container layers. ● Perform vulnerability assessments, risk analysis, prioritization, and remediation tracking. ● Coordinate with engineering teams to remediate critical and high-risk vulnerabilities. ● Support penetration testing activities and validate remediation outcomes. Security Tools & Platforms ● Implement and manage Cloud WAF solutions such as AWS WAF and CloudFront WAF. ● Hands-on experience with CSPM tools such as: ○ Wiz ○ Prisma Cloud ○ Lacework ○ Orca Security ● Use CSPM tools to identify misconfigurations, excessive permissions, exposed services, and compliance gaps. ● Experience with CNAPP platforms, container security, and runtime protection. ● Knowledge of network security devices and firewalls such as FortiGate and Palo Alto (plus). ● Work with endpoint and threat detection tools where applicable. Leadership & Collaboration ● Lead and mentor a team of security engineers. ● Act as a technical decision-maker for cloud security architecture and tooling. ● Collaborate with DevOps, Engineering, Infrastructure, and Compliance teams. ● Drive security awareness, best practices, and secure-by-design culture across the organization. Required Skills & Qualifications Technical Skills ● Strong, hands-on expertise in AWS Cloud Security. ● Proven experience implementing DevSecOps practices in real-world environments. ● Deep knowledge of IAM, identity security, access controls, and least-privilege design. ● Expertise in vulnerability management and remediation workflows. ● Experience with WAF solutions, CSPM tools, and Wiz (or similar platforms). ● Strong understanding of container security (Docker, Kubernetes, EKS). ● Familiarity with compliance standards such as ISO 27001, SOC 2, PCI-DSS (good to have). Certifications (Mandatory / Preferred) ● AWS Certified Security – Specialty (preferred) ● AWS Solutions Architect – Associate or Professional ● DevSecOps, Cloud Security, or Kubernetes-related certifications are a plus Soft Skills ● Strong leadership and mentoring abilities. ● Excellent communication and stakeholder management skills. ● Ability to balance hands-on technical work with team leadership. ● Strong problem-solving mindset with a focus on risk reduction and resilience. Nice to Have ● Experience securing Kubernetes / EKS environments at scale. ● Exposure to Zero Trust architectures. ● Strong scripting skills (Python, Bash) for security automation. ● Prior experience leading security initiatives in cloud-first organizations.Contact No: 9717223642 Email ID: neeru@