Senior Security Engineer

2 days ago

Bengaluru, Karnataka, India Getinz Techno Services Full time ₹ 20,00,000 - ₹ 25,00,000 per year
Hiring Security Engineers @ Fintech Product Company in Bangalore
Experience Range: years
Looking for candidates to join in less than or 30 days notice period.  
About the Security Engineer Role As a Security Engineer, you will be responsible for designing, implementing, and maintaining security controls for our AWS cloud infrastructure. You will ensure the security of our payment processing platform built on applications and GoLang microservices, while leveraging AWS security services including Shield and CloudFront to protect against threats and ensure optimal performance across global markets.
Key Responsibilities AWS Cloud Security Architecture
  • Design and implement comprehensive security architecture for AWS cloud environments
  • Configure and manage AWS Shield for DDoS protection across payment processing infrastructure
  • Implement and optimize AWS CloudFront security configurations including WAF rules, SSL/TLS, and origin protection
  • Secure AWS services including EC2, ECS, EKS, Lambda, RDS, S3, and API Gateway
  • Design and implement network security controls using VPC, Security Groups, NACLs, and AWS Transit Gateway
  • Establish secure CI/CD pipelines for applications and GoLang microservices
Application & Infrastructure Security
  • Secure applications running on AWS infrastructure including container and serverless environments
  • Implement security controls for GoLang microservices deployed across multiple AWS regions
  • Configure and manage AWS WAF rules for web application protection
  • Implement container security for Docker containers running and GoLang applications
  • Secure Kubernetes clusters (EKS) hosting microservices architecture
  • Manage secrets and configuration security using AWS Secrets Manager and Parameter Store
Monitoring & Incident Response
  • Implement comprehensive security monitoring using AWS CloudTrail, GuardDuty, and Security Hub
  • Deploy and manage Prowler for continuous AWS security monitoring and compliance validation
  • Utilize ScoutSuite for regular multi-cloud security posture assessments
  • Configure Gitleaks monitoring for continuous secret detection across development workflows
  • Implement OpenGrep rules for real-time security vulnerability detection in application code
  • Configure CloudWatch alarms and automated incident response workflows
  • Develop and maintain security dashboards and reporting mechanisms
  • Respond to security incidents and conduct forensic analysis in cloud environments
  • Implement automated threat detection and response capabilities
  • Monitor and analyze CloudFront access logs and security events
Compliance & Risk Management
  • Ensure AWS infrastructure compliance with financial industry regulations (PCI DSS, SOX, GDPR)
  • Conduct regular security assessments using Prowler for AWS compliance validation and ScoutSuite for comprehensive security audits
  • Implement continuous compliance monitoring through automated tools and custom security frameworks
  • Implement and maintain data protection controls for payment processing workloads
  • Perform risk assessments for cloud services and architectures
  • Develop and maintain disaster recovery and business continuity plans
  • Support compliance audits and regulatory assessments
Automation & DevSecOps
  • Implement Infrastructure as Code (IaC) security using Terraform, CloudFormation, and AWS CDK
  • Integrate Gitleaks for automated secret scanning in CI/CD pipelines and repositories
  • Deploy OpenGrep (Semgrep) for static analysis and security vulnerability detection in and GoLang codebases
  • Utilize Prowler for comprehensive AWS security assessments and compliance checks
  • Implement ScoutSuite for multi-cloud security auditing and configuration reviews
  • Develop security automation scripts and tools using Python, Bash, and AWS SDKs
  • Integrate security scanning and compliance checks into CI/CD pipelines
  • Automate security policy enforcement across AWS accounts and regions
  • Implement automated remediation for common security misconfigurations
Required Qualifications Experience
  • 8+ years of experience in cloud security, with strong focus on AWS cloud environments
  • Hands-on experience with AWS Shield (Standard and Advanced) for DDoS protection
  • Extensive experience securing AWS CloudFront distributions including WAF integration and SSL/TLS configuration
  • Strong experience securing applications in cloud environments
  • Proven experience with GoLang microservices security in containerized and serverless architectures
  • Hands-on experience with security automation tools including Gitleaks, OpenGrep, Prowler, and ScoutSuite
  • Experience with AWS security services (GuardDuty, Security Hub, Config, CloudTrail)
  • Knowledge of financial services security requirements and payment processing compliance
Technical Skills
  • Advanced proficiency in AWS security services and best practices
  • Deep understanding of AWS Shield and DDoS mitigation strategies
  • Expert-level knowledge of AWS CloudFront security configurations and optimization
  • Strong security knowledge for applications including dependency management and runtime security
  • Comprehensive understanding of GoLang microservices security patterns and secure coding practices
  • Proficiency with security automation tools: Gitleaks (secret scanning), OpenGrep/Semgrep (static analysis), Prowler (AWS security assessment), ScoutSuite (multi-cloud auditing)
  • Proficiency in Infrastructure as Code (Terraform, CloudFormation, AWS CDK)
  • Experience with container security (Docker, Kubernetes/EKS)
  • Knowledge of network security protocols and AWS networking services
  • Scripting and automation skills (Python, Bash, PowerShell)
Security Expertise
  • Deep understanding of cloud security frameworks (NIST, CSA, AWS Well-Architected Security Pillar)
  • Knowledge of web application security and API security best practices
  • Experience with vulnerability management and security testing tools
  • Understanding of cryptography, PKI, and secure communication protocols
  • Knowledge of identity and access management (IAM) and zero-trust architecture
  • Experience with security monitoring, SIEM, and incident response
Nice to Have Certifications
  • AWS Security Specialty certification
  • AWS Solutions Architect or DevOps Engineer certifications
  • Additional security certifications (CISSP, CCSP, CEH, CISSP)
  • Cloud security certifications from other providers (Azure, GCP)
Additional Skills
  • Experience with multi-cloud security architectures
  • Knowledge of serverless security (AWS Lambda, API Gateway)
  • Experience with compliance frameworks (SOC 2, PCI DSS, ISO 27001)
  • Familiarity with threat modeling and risk assessment methodologies
  • Experience with security orchestration and automated response (SOAR)
  • Knowledge of machine learning for security analytics
  • Experience with payment processing and financial services infrastructure
  • Understanding of microservices mesh security (Istio, Consul Connect)
Key Abilities and Traits Cloud Security Expertise: Demonstrated ability to design and implement comprehensive security controls for complex AWS environments processing sensitive financial data. Technical Leadership: Capable of leading cloud security initiatives, influencing architecture decisions, and mentoring team members on cloud security best practices. Problem-Solving: Strong analytical skills with the ability to troubleshoot complex cloud security issues and implement innovative solutions. Automation Mindset: Commitment to automating security processes and implementing security-as-code practices across the infrastructure lifecycle. Communication: Excellent verbal and written communication skills, capable of explaining complex cloud security concepts to both technical and business stakeholders. Continuous Learning: Commitment to staying current with evolving AWS services, cloud security threats, and industry best practices. Detail-Oriented: Meticulous attention to detail when implementing security controls and reviewing cloud configurations. Project Management: Ability to manage multiple cloud security projects simultaneously while ensuring compliance with regulatory requirements.

  • Senior Security Engineer

    2 weeks ago

    Bengaluru, Karnataka, India Skyhigh Security Full time US$ 1,25,000 - US$ 1,75,000 per year

    Job Title:Senior Security EngineerAbout Skyhigh Security:Skyhigh Security is a dynamic, fast-paced, cloud company that is a leader in the security industry. Our mission is to protect the world's data, and because of this, we live and breathe security. We value learning at our core, underpinned by openness and transparency.Since 2011, organizations have...

  • Senior Security Engineer

    2 weeks ago

    Bengaluru, Karnataka, India Trellix Full time ₹ 15,00,000 - ₹ 25,00,000 per year

    Job Title:Senior Security EngineerRole Overview:The Senior Security Engineer is responsible for the secure design, development, and operation of Skyhigh products and services. This role involves a mix of proactive security design, vulnerability management, and incident response, with a strong focus on maintaining and enforcing compliance standards. You will...

  • Senior Security Engineer

    2 weeks ago

    Bengaluru, Karnataka, India Vimaan Full time ₹ 8,00,000 - ₹ 12,00,000 per year

    Bangalore, IndiaPosted 2 years agoSenior Security EngineerVIMAAN is looking to hire a talented senior security engineer to join our exceptional engineering team developing the next generation of information systems for the warehouse. You will work with cross-functional teams, plan, and work on security threats identification, prevention and mitigation. You...

  • Senior Information Security Analyst

    2 weeks ago

    Bengaluru, Karnataka, India Rubrik Security Cloud Full time ₹ 5,00,000 - ₹ 8,00,000 per year

    About the team:The Information Security (InfoSec) organization advances the overall state of security at Rubrik through critical initiatives and coordination of large security projects. Information Security builds technologies, tools, and processes to better enable teams at Rubrik to develop secure software and protect data and systems with appropriate...

  • Senior Compliance Engineer

    2 weeks ago

    Bengaluru, Karnataka, India Skyhigh Security Full time ₹ 20,00,000 - ₹ 25,00,000 per year

    Job Title:Senior Compliance EngineerAbout Skyhigh Security:Skyhigh Security is a dynamic, fast-paced, cloud company that is a leader in the security industry. Our mission is to protect the world's data, and because of this, we live and breathe security. We value learning at our core, underpinned by openness and transparency.Since 2011, organizations have...

  • Senior Network Security Engineer

    5 days ago

    Bengaluru, Karnataka, India Care infotech Full time ₹ 20,00,000 - ₹ 25,00,000 per year

    Company DescriptionCare infotech specializes in providing backup support for desktops, laptops, and servers. The company offers IT jobs on-call and on a day basis. Care infotech is committed to delivering reliable and efficient IT solutions to help businesses operate smoothly and securely. Reach out to us for more information about our services and...

  • Senior Engineering Manager

    2 days ago

    Bengaluru, Karnataka, India Rubrik Security Cloud Full time ₹ 20,00,000 - ₹ 25,00,000 per year

    About the team Product Security Team: Securing Rubrik's PlatformThe Product Security Engineering team is responsible for building innovative security-focused features and frameworks for large scale data management products. We are looking for a senior manager to lead two engineering teams (Shield - IAM and Shield - Platform) composed of talented software...

  • Senior Cyber Security Engineer

    4 weeks ago

    Bengaluru, Karnataka, India JobSeeks4U Consultancy Services Full time

    We're Hiring : Senior Cyber Security Engineer Location : Chennai (On-site) Experience : 6 – 8 years Salary Range : ₹12 – 18 LPA Immediate Joiners PreferredWe are looking for an experienced Senior Cyber Security Engineer to join our team in Chennai and play a key role in securing mission-critical systems, embedded platforms, and communication...

  • Senior Security Engineer

    2 weeks ago

    Bengaluru, Karnataka, India Zamp Full time ₹ 15,00,000 - ₹ 30,00,000 per year

    About Zamp: At Zamp, we're building AI agents that empower people to move at the speed of thought. Our vision is a world where AI handles the routine, so humans can focus on strategy and innovation. We are building a platform where all operational work runs autonomously. We partner with Fortune 500s, leading global banks and companies to streamline complex...

  • Senior Security Engineer

    7 days ago

    Bengaluru, Karnataka, India Akaasa Infotech Noida Full time ₹ 1,50,000 - ₹ 28,00,000 per year

    Title: Senior Security Engineer ServiceNow Security & Threat Modelling (Remote Role)QualificationsMinimum 6 years of experience in application or cloud security engineering, with a consistent focus on secure design and risk reduction.Demonstrable expertise in threat modelling frameworks and methodologies (e.g.,STRIDE, PASTA, attack trees).Strong background...