1,499 Cloud Security jobs in India

Dear Candidate

Tata Consultancy Services is hiring for Cloud Security

Experience: 10+Years

Location: Bangalore / Pune / Hyderabad

Roles and Responsibilities:

We are seeking a Cloud DevOps Engineer with hands-on experience in cloud-native environments and preferably a strong working knowledge of Wiz Cloud Native Application Protection. You will be responsible for reliable delivery of Wiz capabilities and supporting Wiz integration with HSBC cloud (AWS, GCP, Azure, AliCloud) and containers infrastructure. This is a cross-functional role that bridges DevOps and Security, enabling secure and compliant cloud deployment and increased visibility of cloud and containers security posture.

• Wiz management plane: delivery and management to automate day-to-day operations – user onboarding, wiz policy and settings updates, migration between Wiz tenants, automate Wiz integration with cloud and containers platforms.
• Wiz Integration & Management: onboard new cloud and containers accounts into Wiz, recipes for integrating Wiz with CI/CD pipeline, containers registry, ticketing systems.
• Implement custom Wiz reports for different stakeholders by leveraging Wiz API and Graph using GraphLQ, Python etc.
• Build and maintain infrastructure-as-code for Wiz deployments and configurations.
• Contribute to security runbooks, incident response, and policy-as-code documentation.
• Responsible for updating and patching Wiz management plane software and infrastructure.
• Support integration efforts with downstream reporting tools by provisioning and maintaining service accounts and APIs catalogue needed.
• Experience in building management plane for IT systems on cloud platforms to monitor system health using gitOps and CICD pipelines, preferably using Google technology, e.g. CloudRun
• Experience in process automation for making changes to Wiz platform e.g. create new roles, updating roles, automate users onboarding
• Strong scripting or coding skills (Pythons, Go, etc.) to implement custom report and API in Wiz for vulnerability scanning reporting, configuration baseline, and runtime security
• Proficiency with at least one major cloud provider (GCP, AWS)
• Infrastructure-as-Code (iac) experience with terraform, Helm
• Experience in CICD tools (GitHub Actions, Jenkins, CloudRun, AWS system manager)
• Experience in debugging and troubleshooting for Wiz related issues

Regards

S.Shanbaga

Tata Consultancy Services

Human Resources- CSP TAG

About Position:

This role focuses on designing automation, implementing systems, and maintaining CI/CD pipelines in a hybrid environment across AWS, Azure, and Google clouds. You will be responsible for supporting day-to-day security operations, maintaining security products, and collaborating with various teams to ensure compliance with security policies and procedures. The work is largely project-based, requiring you to lead and participate in security projects and contribute to ongoing security improvements and audits.

• Role: Cloud Security
• Location: All Persistent Locations
• Experience: 12 to 16Years
• Job Type: Full Time Employment

What You'll Do:

• Develop and enforce security controls for 200+ AWS, GCP, and Azure cloud environments as well as a fleet of end user laptops. Maintain and implement security tools, integrating commercial software with internal systems.
• Conduct and manage vulnerability scanning, collaborating with IT, Product Engineering, and other teams to address findings. Enhance runtime protection policies and SIEM parsing rules.
• Respond to security alerts, analyze logs and XDR findings via the SIEM for potential incidents. Champion automation using tools like Terraform, Ansible, and CloudFormation.
• Participate in incident response to investigate and remediate security events. Identify root causes of security issues, prioritize threats, and implement corrective actions, leveraging automation where possible.
• Develop and enforce access management strategies, focusing on single sign-on for AWS, Azure, Google Cloud, and other platforms. Advocate and enforce system security policies and user access plans.
• Oversee and participate in security assessments and audits, collaborating on remediation plans.
• Prepare and present technical reports and briefings. Educate colleagues on information security managementProven ability to design, test, and implement automation and technical solutions.
• Experience managing cloud environments and implementing DevOps concepts and CI/CD technologies.
• Familiarity with runtime protection and endpoint management solutions (e.g., Trend Micro CloudOne, Sentinel One, Automox, Rapid7 Insight Agent

Expertise You'll Bring:

• Degree in B.E or B. Tech only
• 7 – 8 years of experience in DevSecOps Engineer, or DevOps Engineer.
• AWS Certified DevOps Engineer or Solutions Architect, or equivalent certification in Azure or Google Cloud.
• Proficiency in at least one programming language (Python, Ruby, PowerShell, Golang, etc.) and/or one Infrastructure as Code framework (Terraform, CloudFormation, Ansible, etc.)
• Knowledge of industry and regulatory frameworks such as SOC2 and HITRUST
• Experience with incident response scenarios
• Excellent written and verbal communication skills
• Strong attention to detail and passion for processes and systems. Ability to participate in a 24/7/365 on-call rotation

Benefits:

• Competitive salary and benefits package
• Culture focused on talent development with quarterly growth opportunities and company-sponsored higher education and certifications
• Opportunity to work with cutting-edge technologies
• Employee engagement initiatives such as project parties, flexible work hours, and Long Service awards
• Annual health check-ups
• Insurance coverage: group term life, personal accident, and Mediclaim hospitalization for self, spouse, two children, and parents

Values-Driven, People-Centric & Inclusive Work Environment:

Persistent Ltd. is dedicated to fostering diversity and inclusion in the workplace. We invite applications from all qualified individuals, including those with disabilities, and regardless of gender or gender preference. We welcome diverse candidates from all backgrounds.

• We support hybrid work and flexible hours to fit diverse lifestyles.
• Our office is accessibility-friendly, with ergonomic setups and assistive technologies to support employees with physical disabilities.
• If you are a person with disabilities and have specific requirements, please inform us during the application process or at any time during your employment

Let’s unleash your full potential at Persistent - persistent.com/careers

“Persistent is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind.”

About Position:

This role focuses on designing automation, implementing systems, and maintaining CI/CD pipelines in a hybrid environment across AWS, Azure, and Google clouds. You will be responsible for supporting day-to-day security operations, maintaining security products, and collaborating with various teams to ensure compliance with security policies and procedures. The work is largely project-based, requiring you to lead and participate in security projects and contribute to ongoing security improvements and audits.

• Role: Cloud Security
• Location: All Persistent Locations
• Experience: 12 to 16Years
• Job Type: Full Time Employment

What You'll Do:

• Develop and enforce security controls for 200+ AWS, GCP, and Azure cloud environments as well as a fleet of end user laptops. Maintain and implement security tools, integrating commercial software with internal systems.
• Conduct and manage vulnerability scanning, collaborating with IT, Product Engineering, and other teams to address findings. Enhance runtime protection policies and SIEM parsing rules.
• Respond to security alerts, analyze logs and XDR findings via the SIEM for potential incidents. Champion automation using tools like Terraform, Ansible, and CloudFormation.
• Participate in incident response to investigate and remediate security events. Identify root causes of security issues, prioritize threats, and implement corrective actions, leveraging automation where possible.
• Develop and enforce access management strategies, focusing on single sign-on for AWS, Azure, Google Cloud, and other platforms. Advocate and enforce system security policies and user access plans.
• Oversee and participate in security assessments and audits, collaborating on remediation plans.
• Prepare and present technical reports and briefings. Educate colleagues on information security managementProven ability to design, test, and implement automation and technical solutions.
• Experience managing cloud environments and implementing DevOps concepts and CI/CD technologies.
• Familiarity with runtime protection and endpoint management solutions (e.g., Trend Micro CloudOne, Sentinel One, Automox, Rapid7 Insight Agent

Expertise You'll Bring:

• Degree in B.E or B. Tech only
• 7 – 8 years of experience in DevSecOps Engineer, or DevOps Engineer.
• AWS Certified DevOps Engineer or Solutions Architect, or equivalent certification in Azure or Google Cloud.
• Proficiency in at least one programming language (Python, Ruby, PowerShell, Golang, etc.) and/or one Infrastructure as Code framework (Terraform, CloudFormation, Ansible, etc.)
• Knowledge of industry and regulatory frameworks such as SOC2 and HITRUST
• Experience with incident response scenarios
• Excellent written and verbal communication skills
• Strong attention to detail and passion for processes and systems. Ability to participate in a 24/7/365 on-call rotation

Benefits:

• Competitive salary and benefits package
• Culture focused on talent development with quarterly growth opportunities and company-sponsored higher education and certifications
• Opportunity to work with cutting-edge technologies
• Employee engagement initiatives such as project parties, flexible work hours, and Long Service awards
• Annual health check-ups
• Insurance coverage: group term life, personal accident, and Mediclaim hospitalization for self, spouse, two children, and parents

Values-Driven, People-Centric & Inclusive Work Environment:

Persistent Ltd. is dedicated to fostering diversity and inclusion in the workplace. We invite applications from all qualified individuals, including those with disabilities, and regardless of gender or gender preference. We welcome diverse candidates from all backgrounds.

• We support hybrid work and flexible hours to fit diverse lifestyles.
• Our office is accessibility-friendly, with ergonomic setups and assistive technologies to support employees with physical disabilities.
• If you are a person with disabilities and have specific requirements, please inform us during the application process or at any time during your employment

Let's unleash your full potential at Persistent -

"Persistent is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind."

Level: L3

• The Cloud Security and DLP SME is responsible for managing and optimizing DLP policies across endpoints, cloud services, Web, Network and collaboration platforms:
• Review and fine-tune existing DLP policies to reduce false positives and improve detection accuracy.
• Collaborate with Customer business stakeholder and cross functional tower leads to identify new policy requirements and prioritize them in the DLP backlog
• Implement policy changes through structured change management processes
• Monitor and triage high and critical severity DLP alerts on a daily basis (typically 8x5 coverage)
• Investigate incidents, validate true positives, and escalate as needed to SOC or compliance teams.
• Provide feedback to improve alert logic and reduce noise
• Participate in monthly and quarterly governance reviews to present DLP performance, SLA adherence, and improvement plans
• Deliver monthly service reports and strategic recommendations to client stakeholders
• Track KPIs such as alert volumes, policy effectiveness, and incident closure rates.
• Work closely with SOC teams, security architects, and compliance leads to align DLP controls with business and regulatory requirements
• Support onboarding of new data sources and integration
• Contribute to transformation initiatives such as AI-led enrichment and automation of DLP workflowsTool / Technology: MS Sentinel and LogicApps

Job Description
Job Title:
Cloud Security & Defense

About the Function:
Our Digital and Technology (D&T) team are innovators, delivering ground-breaking solutions that will help build the future of our iconic brands. Technology touches every part of our business, from the sourcing of balanced ingredients to marketing and development of our online platforms. We utilise data insights to build competitive advantage, supporting our people to deliver value faster.

Our D&T team includes some of the most dedicated digital professionals in the industry. Every day, we come together to push boundaries and innovate, crafting the digital solutions of tomorrow. Whatever your passion, we'll help you become the best you can be, crafting career-defining work and delivering breakthrough thinking.

About The Role
Roles in this job family build, develop, implement and coordinates Diageo's information security and cyber resilience strategy by evaluating, testing and monitoring security policies, procedures and systems. They typically have specific skills in IT and cyber security and risk assessment, and well as specialist skills in mitigation and fixes to potential vulnerabilities as detected. These roles will also be involved in continuity planning, containment and restoration of service planning.

Role Responsibilities

• The Offensive Security Lead, you will own and drive internal offensive security capabilities within AABDS, including internal red teaming, breach and attack simulation (BAS), and controls validation. This role is essential to proactively identifying vulnerabilities, simulating adversarial behavior (including APT tactics), and validating the effectiveness of security controls across IT, Cloud, and OT environments.
• Design, lead, and implement internal offensive security operations including:
• Red teaming (internal adversary simulation)
• Breach and Attack Simulation (BAS)
• Control efficiency validation (e.g., MFA bypass, EDR evasion)
• Develop threat-informed scenarios aligned to MITRE ATT&CK, APT profiles, and business-critical applications
• Build and maintain test cases and automation frameworks for continuous controls validation
• Collaborate with CTI and SOC teams to replay real-world threats and evaluate detection efficacy
• Maintain up-to-date knowledge of zero-day exploits, evasion techniques, and offensive tooling
• Provide technical reports, risk summaries, and executive presentations based on offensive findings
• Participate in post-incident reviews to simulate attacker replay and verify containment efficiency
• Partner with VM, Cloud, and Application Security teams to ensure offensive findings are closed via remediation or compensating controls
• Own and improve internal offensive tooling stack, including safe use of open-source and commercial platforms

Experience / Skills Required

• 6+ years in cybersecurity, with 4+ years in offensive security / red teaming / penetration testing
• Hands-on experience with tools such as Cobalt Strike, Metasploit, BloodHound, Caldera, Atomic Red Team, MITRE ATT&CK Navigator, FireCompass, Pentera, or equivalent
• Solid understanding of network security, Windows/AD, cloud environments (Azure/AWS), containers, web application security, and MITRE ATT&CK
• Experience with BAS platforms or custom adversary emulation scripting (Python, PowerShell)
• Strong analytical skills; able to correlate offensive outcomes with real-world business impact
• Familiarity with SOC operations, detection engineering, threat hunting, and CTI workflows
• Excellent communication and reporting skills, including experience addressing senior partners (e.g., CISO, Risk Committees)

Flexible Working Statement:
Flexibility is key to our success. From part-time and compressed hours to different locations, our people work flexibly in ways to suit them. Talk to us about what flexibility means to you so that you're supported from day one.

Diversity statement:
Our purpose is to celebrate life, every day, everywhere. And creating an inclusive culture, where everyone feels valued and that they can belong, is a crucial part of this.

We embrace diversity in the broadest possible sense. This means that you'll be welcomed and celebrated for who you are just by being you. You'll be part of and help build and champion an inclusive culture that celebrates people of different gender, ethnicity, ability, age, sexual orientation, social class, educational backgrounds, experiences, mindsets, and more.

Our ambition is to create the best performing, most trusted and respected consumer products companies in the world. Join us and help transform our business as we take our brands to the next level and build new ones as part of shaping the next generation of celebrations for consumers around the world.

Feel inspired? Then this may be the opportunity for you.

If you require a reasonable adjustment, please ensure that you capture this information when you submit your application.
Worker Type
Regular

Primary Location:
Bangalore Karle Town SEZ

Additional Locations :
Job Posting Start Date

Experience:

• 3-5 years of experience in cloud security engineering or related roles.
• Hands-on experience with cloud environments (AWS, Azure, Google Cloud Platform) and their security tools.
• Proficiency in cloud security best practices and concepts, including network security, identity and access management (IAM), encryption, and threat detection.

Technical Skills:

• Expertise in using Prisma Cloud or similar CSPM/CWP platforms for continuous monitoring and security.
• Knowledge of container security (e.g., Docker, Kubernetes) and workload protection.
• Familiarity with cloud-native services for security (e.g., AWS GuardDuty, Azure Security Center).
• Ability to configure and manage security policies, alerts, and compliance checks within cloud environments.
• Experience with security automation and scripting (e.g., Python, Bash) is a plus.

Stay updated for more insights and innovations by following us on LinkedIn:
eSec Forte Technologies

Level: L3

• The Cloud Security and DLP SME is responsible for managing and optimizing DLP policies across endpoints, cloud services, Web, Network and collaboration platforms:
• Review and fine-tune existing DLP policies to reduce false positives and improve detection accuracy.
• Collaborate with Customer business stakeholder and cross functional tower leads to identify new policy requirements and prioritize them in the DLP backlog
• Implement policy changes through structured change management processes
• Monitor and triage high and critical severity DLP alerts on a daily basis (typically 8x5 coverage)
• Investigate incidents, validate true positives, and escalate as needed to SOC or compliance teams.
• Provide feedback to improve alert logic and reduce noise
• Participate in monthly and quarterly governance reviews to present DLP performance, SLA adherence, and improvement plans
• Deliver monthly service reports and strategic recommendations to client stakeholders
• Track KPIs such as alert volumes, policy effectiveness, and incident closure rates.
• Work closely with SOC teams, security architects, and compliance leads to align DLP controls with business and regulatory requirements
• Support onboarding of new data sources and integration
• Contribute to transformation initiatives such as AI-led enrichment and automation of DLP workflowsTool / Technology: MS Sentinel and LogicApps

Role & responsibilities: Cloud Security & GCP

Design and implement a robust cloud security architecture across multiple cloud platforms (e.g., AWS, Azure, GCP).

Develop and maintain a comprehensive cloud security strategy, roadmap, and policies aligned with business objectives and industry best practices.

Provide expert guidance and consultation on all cloud security matters to internal teams and stakeholders.

Conduct regular security assessments, penetration testing, and vulnerability scanning to identify and remediate weaknesses in the cloud environment.

Deep understanding of cloud security principles, architecture, and services.

Hands-on experience with security services within GCP Azure AWS

Strong knowledge of networking concepts

Experience with Infrastructure as Code (IaC) tools like Terraform or CloudFormation.

Deploy and manage core GCP services, including Compute Engine, GKE, Cloud Storage, and Cloud SQL.

Design and implement scalable, secure, and reliable cloud solutions on GCP.

Provide expert guidance on the selection and use of GCP services to meet business requirements.

Cloud Security (GCP) Engineer

Role Type - FTE

Location - Hyderabad (WFO_Hybrid for now, will change to full time)

Shift - 12PM to 9PM/12:30PM to 9:30PM

NP - 0 to 15 days

Mandate Qualifications:

• Educational Background: Bachelor's degree in Computer Science, Information Technology, or a related field.
• Professional Experience: Minimum of 3 years in cloud security engineering, focusing on GCP environments.

Technical Proficiency:

• Strong DevOps experience in GCP cloud with experience in DevSecops and related tools,
• Understanding of application vulnerability and exposure to sast/dast tools. scripting (python, java) and software development experience
• Strong cloud infrastructure & DevOps hands-on experience in GCP.
• Hands on experience in infrastructure (systems/backups/storage/vmware/db/networking) is a plus
• Exposure to security incident management and vulnerability mgmt with an eye for scripting/automation is required.

Certifications:

• Relevant certifications such as Google Professional Cloud Security Engineer, Certified Kubernetes Security Specialist (CKS), or similar are preferred.

Key Responsibilities:

• Design and Implement Cloud Security Measures: Develop and enforce security policies and procedures for cloud-based systems, ensuring compliance with industry standards and best practices.
• Educate and Transition Security Frameworks: Guide teams in migrating existing on-premises security frameworks, such as Rubric, to cloud environments, ensuring seamless integration and functionality.
• Manage Secure Backup and Restore Processes: Oversee and enhance secure backup and restoration procedures for cloud-based data and applications.
• Infrastructure as Code Development: Utilize Terraform to automate the provisioning and management of cloud infrastructure, ensuring scalability and reliability.
• CI/CD Pipeline Integration: Collaborate with development teams to integrate security measures within Continuous Integration/Continuous Deployment pipelines.
• Complex Workload Restoration: Develop and implement strategies for restoring complex workloads in cloud environments, ensuring minimal downtime and data integrity.
• Advanced Cloud Services Management: Leverage advanced cloud services to optimize cloud resources' performance, security, and cost-efficiency.
• Kubernetes Security Oversight: Manage and secure containerized applications orchestrated through Kubernetes, ensuring adherence to security best practices.

Pl share your resume to or call