Cloud Security Engineer

  ABOUT TEMENOSTemenos powers a world of banking thatcreates opportunities for billions of people and businesses everywhere. We havebeen doing this for over 30 years through the pioneering spirit of our Temenosianswho are passionate about making banking better, together.We serve over 3000 clients from the largest to challengers andcommunity banks in 150+ countries. We collaboratewith clients to build new banking services and state-of-the-art customerexperiences on our open banking platform, helping them operate moresustainably.At Temenos, we have an open-minded andinclusive culture, where everyone has the power to create their own destiny andmake a positive contribution to the world of banking and society.  THE ROLETheCloud Security Engineer will act as the most senior technicalauthority within the Cloud Security Operations team based in India. The rolewill ensure the security of our banking clients in public and private cloud aspart of our SaaS banking services. The role will ensure that our clouddeployments and cloud infrastructure and associated services meets our cloudsecurity standards including defining and maintaining security controls. Therole is pivotal in ensuring that our client projects are deployed successfullyto cloud with strong security posture. The role will support and interactwith other Temenos teams both within and external to the Cloud Security globalteam including Cloud Operations, Cloud Architecture, Cyber Defence Centre,Information security, Regional Engineering teams, SRE, Product Security, SaaSDesign and Build and our Compliance/Audit/Risk teams. This role may alsorequire interfacing with our SaaS clients directly and the incumbent should becomfortable in such environments, being able to communicate confidently bothverbally and in writing. OPPORTUNITIESYou will implement, manage, and support Azure cloud security controls, including identity and access management (IAM), network security groups, application gateways, encryption, and key management. You will configure, maintain, and optimize Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) solutions to ensure secure internet and application connectivity.You will manage and maintain Data Loss Prevention (DLP) policies using Microsoft Purview, ensuring protection of sensitive and regulated information.You will collaborate with business and IT teams to ensure data classification, labeling, and protection policies are effectively applied.You will monitor and respond to security alerts, incidents, and vulnerabilities related to cloud and data security environments.You will support cloud security reviews, audit requests, and risk assessments, ensuring alignment with compliance frameworks and internal policies.You will participate in security automation initiatives, leveraging Azure native tools such as Azure Policy, Logic Apps, and Sentinel where applicable. You will assist in developing and maintaining securitystandards, documentation, and SOPs for Azure, Zscaler, and DLP environments. You will provide technical guidance to project teams on secure design, deployment, and configuration of Azure and network security solutions.You will coordinate with stakeholders for remediation of identified vulnerabilities, ensuring timely closure and audit traceability.You will be available for on-call or after-hours support during critical security events, DLP incidents, or urgent cloud issues. SKILLSYou should have bachelor's degree in computer science, InformationSecurity, Engineering, or a related field.You should have minimum 5 years of experience in information/cyber security, with a focus on cloud and data protection technologies.You should have strong working knowledge of Microsoft Azure, including security services (Azure AD, Defender for Cloud, Policy, Sentinel, Key Vault, etc.).You should have hands-on experience with Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) — configuration, policy management, troubleshooting, and integration.You should have experience implementing and managing Data Loss Prevention (DLP) controls using Microsoft Purview (formerly Microsoft Information Protection).You should have familiarity with SIEM and SOAR tools (e.g., Microsoft Sentinel) for security monitoring and response. You should have solid understanding of network security concepts, identity and access management, and data protection frameworks.You should good knowledge of WAF and Firewall technologies.You should have good understanding of incident management, change control, and security governance processes. You should have strong analytical, documentation, and communication skills — able to engage both technical and non-technical stakeholders.  VALUESCare You will be a caring leader who puts people first.Commit You will be comfortable committing time to the job when required – with flexibility to work to meet global demands.Collaborate You will be a consensus builder and a collaborator, able to break through challenges with organizational silos.Challenge You will not be happy with just meeting targets but always demonstrate a stretch mindset. SOME OF OUR BENEFITS include:Maternity leave: Transition back with 3 days per week in the first month and 4 days per week in the second monthCivil Partnership: 1 week of paid leave if you're getting married. This covers marriages and civil partnerships, including same sex/civil partnershipFamily care: 4 weeks of paid family care leaveRecharge days: 4 days per year to use when you need to physically or mentally needed to rechargeStudy leave: 2 weeks of paid leave each year for study or personal development  Please make sure to read our Recruitment Privacy Policy#LI-Hybrid