4,587 Cloud Security Analyst jobs in India

Role: Sr Cloud Security Engineer

Location: Pune/Mumbai

Notice: Immediate

• Configure and onboard cloud log sources with proper parsing into the SIEM.
• Monitor and maintain log ingestion pipelines, troubleshooting issues as needed.
• Develop and tune detection rules aligned with MITRE ATT&CK for cloud threats.
• Create dashboards and reports for executive visibility and audits.
• Build playbooks for cloud threat response and recommend system improvements.

Ensure alignment of use cases with evolving threat frameworks and cloud security trends.

Role: Sr Cloud Security Engineer

Location: Pune/Mumbai

Notice: Immediate

• Configure and onboard cloud log sources with proper parsing into the SIEM.
• Monitor and maintain log ingestion pipelines, troubleshooting issues as needed.
• Develop and tune detection rules aligned with MITRE ATT&CK for cloud threats.
• Create dashboards and reports for executive visibility and audits.
• Build playbooks for cloud threat response and recommend system improvements.

Ensure alignment of use cases with evolving threat frameworks and cloud security trends.

Role: Sr Cloud Security Engineer

Location: Pune/Mumbai

Notice: Immediate

• Configure and onboard cloud log sources with proper parsing into the SIEM.
• Monitor and maintain log ingestion pipelines, troubleshooting issues as needed.
• Develop and tune detection rules aligned with MITRE ATT&CK for cloud threats.
• Create dashboards and reports for executive visibility and audits.
• Build playbooks for cloud threat response and recommend system improvements.

Ensure alignment of use cases with evolving threat frameworks and cloud security trends.

Job Summary:

We are seeking a seasoned Security Researcher with deep expertise in malware analysis, reverse engineering, and cloud threat research. The ideal candidate will have extensive hands-on experience analyzing advanced malware, uncovering TTPs (Techniques, Tactics, and Procedures) used by threat actors, and aligning their findings with the MITRE ATT&CK framework. The role also requires deep understanding of public cloud services (AWS, Azure, or GCP), and a keen eye for identifying vulnerabilities and emerging attack surfaces for sandbox product.

Key Responsibilities:

• Perform advanced malware analysis, including unpacking, static code inspection, and dynamic behavioral profiling using industry-standard tools (e.G., IDA Pro, Ghidra, x64dbg)
• Reverse engineer diverse malware families—such as trojans, ransomware, loaders, and stealers—to extract indicators of compromise (IOCs) and document threat actor tactics, techniques, and procedures (TTPs)
• Malware detection and attribution using yara signature.
• Track and analyze newly released cloud resource types and services, assessing associated risks and attack surface expansions.
• Collaborate with Security SMEs to develop and refine threat hunting rules focused on adversary activities in the cloud control plane.
• Lead and execute cloud security research projects, contributing to threat intelligence and proactive defense strategies.
• Investigate customer escalations and incidents to identify false positives and false negatives.
• Perform data discovery and validation to ensure high data efficacy and accuracy in detection systems.
• Maintain strong awareness of vulnerabilities, threat groups, and attack trends across cloud platforms.
• Automate analysis tasks and operational workflows using Python, Scala, and Linux shell scripting.
• Communicate research findings effectively to engineers, analysts, and stakeholders.
• Ensure research and methodologies align with industry security standards and compliance frameworks.
• Adhere to high quality work standards
• Responsible for maintaining Confidentiality, Integrity and Availability of Vehere’s information assets including business critical information

Skills & Qualifications:

• Minimum 8 years of experience in security research and threat analysis.
• Expertise in at least one major cloud provider: AWS, Azure, or GCP.
• Strong knowledge of malware analysis and reverse engineering tools (e.G., IDA Pro, Ghidra, OllyDbg, Wireshark, etc.).
• Experience in threat intelligence, TTP identification, and MITRE ATT&CK framework.
• Solid understanding of cloud infrastructure, resource types, and control plane threats.
• Hands-on programming/scripting skills in Python, Scala, and Linux Shell.
• Experience in data validation and security detection tuning.
• Excellent communication and collaboration skills, particularly in cross-functional teams.
• Familiarity with common security compliance standards (e.G., ISO 27001, SOC 2, NIST).

• Design, implement, and maintain security controls and policies for cloud environments (AWS, Azure, GCP).
• Monitor cloud infrastructure for security threats, vulnerabilities, and suspicious activities.
• Respond to and investigate security incidents, implementing containment and remediation strategies.
• Conduct regular security assessments, vulnerability scans, and penetration tests of cloud assets.
• Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, GDPR).
• Collaborate with IT operations and development teams to integrate security into CI/CD pipelines and cloud deployments.
• Develop and manage identity and access management (IAM) strategies for cloud resources.
• Perform security reviews of cloud architectures and applications.
• Stay up-to-date with the latest cloud security threats, trends, and technologies.
• Create and maintain security documentation, including policies, procedures, and incident response plans.
• Provide security awareness training to employees.
• Participate in security audits and compliance reviews.
• Assist in the development and testing of disaster recovery and business continuity plans.
• Contribute to the continuous improvement of the organization's security posture.
• Evaluate and recommend new security tools and technologies for cloud environments.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 4 years of experience in information security, with a strong focus on cloud security.
• Proven experience with security concepts and technologies for major cloud platforms (AWS, Azure, GCP).
• Knowledge of network security principles, including firewalls, IDS/IPS, VPNs, and security groups.
• Experience with security assessment tools, vulnerability scanners, and penetration testing methodologies.
• Familiarity with security compliance frameworks and standards.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills, with the ability to explain technical security concepts clearly.
• Ability to work independently and collaboratively in a hybrid work environment.
• Relevant certifications such as CISSP, CCSP, AWS Certified Security - Specialty, or Azure Security Engineer Associate are highly desirable.
• Experience with scripting languages (e.g., Python, PowerShell) for automation is a plus.
• Understanding of container security (Docker, Kubernetes) is beneficial.