5,560 Cloud Security Specialist jobs in India

Redaptive is seeking a highly skilled Cloud Security Specialist to join our team in Pune. This critical position offers an exceptional opportunity to shape and lead Redaptive's cloud security strategy while working with cutting-edge technologies in a dynamic, mission-driven organization. The ideal candidate will combine technical expertise with a collaborative approach to embed security throughout our cloud infrastructure and development processes.

Responsibilities and Duties:

AWS Security Architecture & Strategy

• Design and implement comprehensive security architectures for Redaptive's AWS cloud environments
• Develop cloud security roadmaps aligned with business objectives and compliance requirements
• Establish security standards, policies, and procedures for AWS deployments
• Evaluate and recommend security enhancements to strengthen the cloud security posture
• Lead security aspects of cloud migration initiatives and new AWS service adoptions
• Implement zero-trust security principles in cloud architecture designs
• Provide expert guidance on AWS security best practices to stakeholders across the organization
• Establish metrics to measure the effectiveness of cloud security control

Security Automation & CI/CD Integration

• Develop and maintain security as code implementations for AWS environments
• Integrate security controls and checks into CI/CD pipelines
• Automate security scanning, compliance verification, and remediation processes
• Implement infrastructure as code (IaC) security practices for AWS CloudFormation and Terraform
• Create automated security testing frameworks for cloud resources
• Develop custom security rules and policies for automated enforcement
• Collaborate with DevOps teams to ensure security requirements are met throughout the development lifecycle
• Design and implement automated incident response playbooks for cloud security event

Cloud Security Monitoring & Operations

• Configure and manage cloud security monitoring solutions including AWS Security Hub, GuardDuty, and CloudTrail
• Implement and tune cloud-native SIEM solutions for comprehensive security visibility
• Develop and maintain cloud security dashboards and reporting mechanisms
• Perform advanced cloud security investigations and threat hunting
• Respond to and remediate cloud security incidents
• Conduct cloud security posture assessments and vulnerability management
• Implement and manage cloud security logging and audit mechanisms
• Develop and maintain cloud security incident response procedure

Identity & Access Management

• Design and implement AWS IAM policies, roles, and permission boundaries following least privilege principles
• Develop automated solutions for identity lifecycle management in cloud environments
• Implement and manage privileged access management for AWS resources
• Configure and maintain AWS Single Sign-On and federation with corporate identity providers
• Design and implement secure service-to-service authentication mechanisms
• Conduct regular access reviews and implement automated compliance checks
• Develop and maintain IAM security frameworks and governance processes
• Implement automated detection and remediation of IAM policy violations

Compliance & Risk Management

• Ensure AWS environments meet relevant regulatory requirements and industry standards (e.g., SOC 2, ISO 27001, NIST)
• Develop and implement cloud security compliance frameworks and controls
• Perform cloud security risk assessments and develop risk treatment plans
• Lead cloud-focused security aspects of compliance audits and assessments
• Implement technical controls to meet compliance requirements
• Develop and maintain cloud security documentation for compliance purposes
• Design and implement data protection controls for regulated information in the cloud
• Partner with legal and compliance teams on regulatory and contractual security requirement

DevSecOps Collaboration

• Work closely with DevOps teams to implement security throughout the cloud deployment lifecycle
• Provide guidance on secure cloud architecture and configuration
• Develop security requirements and acceptance criteria for cloud deployments
• Review infrastructure as code for security consideration
• Participate in sprint planning and retrospectives to integrate security into agile processes
• Conduct security knowledge transfer sessions for development and operations teams
• Collaborate on resolving security findings and implementing remediation
• Champion a DevSecOps culture across the organization

Required Abilities and Skills

• Advanced expertise with AWS security services including GuardDuty, Security Hub, IAM, KMS, and CloudTrail
• Strong understanding of cloud security frameworks (AWS Well-Architected Framework, NIST CSF, CSA CCM)
• Hands-on experience implementing security controls in CI/CD pipelines
• Expert knowledge of infrastructure as code (IaC) security for AWS CloudFormation and/or Terraform
• Experience with cloud security posture management (CSPM) tools and processes
• Strong understanding of identity and access management principles in cloud environments
• Experience with automated security testing and continuous security validation
• Proficiency in scripting and programming (Python, Bash, etc.) for security automation
• Excellent understanding of network security, containerization security, and serverless security
• In-depth knowledge of DevSecOps principles and practices
• Excellent written and verbal communication skills

Preferred Abilities and Skills

• Experience with multi-cloud security strategies and implementation
• Knowledge of regulatory compliance requirements relevant to cloud environments
• Experience with container security (Docker, Kubernetes, ECS, EKS)
• Background in implementing Zero Trust architecture in AWS environments
• Experience with AWS automated incident response and remediation
• Knowledge of cloud-native security tools and platforms
• Experience with Hashicorp Vault or similar secrets management solutions
• Background in implementing security for data lakes and analytics platforms
• Experience with cloud workload protection platforms (CWPP)
• Knowledge of serverless security best practices
• Experience with cloud security in the energy efficiency or sustainability industries
• Background in threat modeling for cloud architectures
• Experience working with global teams and offshore development models

Education requirements

• Bachelor's degree in Cybersecurity, Computer Science, or related field; Master's degree preferred
• Minimum of 7+ years of experience in cybersecurity, with at least 5 years focused on cloud security
• Relevant security certifications (AWS Certified Security - Specialty, CCSP, CISSP, or equivalent)

Key Responsibilities

• Serve as Cybersecurity Incident Coordinator & SOC Liaison, advancing incident management and assisting in remediation of security incidents.
  • Capture insights, conduct retrospectives, maintain metrics, and improve response processes.
  • Explain cybersecurity processes during audits and champion security awareness across teams and clients.
  • Advocate and promote cybersecurity services internally and externally; represent the company at conferences, trade shows, and events.
  • Manage and execute complex cybersecurity engagements including risk assessments, vulnerability testing, penetration testing, and threat analysis.
  • Support cybersecurity transformation programs and develop frameworks based on industry standards (ISO, NIST, etc.).
  • Implement and monitor data security and access control policies across cloud and on-prem environments.
  • Monitor networks, systems, and DLP solutions for threats, breaches, and data leakage.
  • Investigate and respond to incidents, perform root cause analysis, and remediate identified gaps.
  • Conduct audits to ensure compliance with standards and regulations (ISO 27001, SOC 2, HIPAA, PCI, GDPR, NIS2).
  • Contribute to BCP planning, tabletop exercises, and red/purple team initiatives.
  • Provide pre-sales consultation, proposals, and technical demos; support business development and go-to-market strategy.
  • Develop and nurture vendor and client relationships to align with security strategy.
  • Collaborate with cross-functional and global teams on large-scale security initiatives.
  • Provide security guidance throughout the SDLC, conduct secure design reviews, and integrate security into CI/CD pipelines.
  • Research emerging threats, security tools, and technologies; contribute to automation and process improvement.
  • Mentor junior analysts and act as an escalation point during incidents.
  • Prepare and present reports for stakeholders, management, and executives.

Skills & Expertise

• Strong knowledge of cybersecurity frameworks and standards (ISO 27001, NIST CSF, MITRE ATT&CK).
  • Hands-on experience with AWS security services (IAM, GuardDuty, Security Hub, etc.); familiarity with Azure and O365.
  • Proficient with security tools: SIEM, IDS/IPS, NGFW, EDR, HIDS/HIPS, AV, DLP, vulnerability scanners.
  • Skilled in application security testing tools (Burp Suite, OWASP Zap, Checkmarx, Fortify, Coverity, Semgrep, Blackduck, etc.).
  • Technical knowledge of protocols (TCP/IP, HTTPS, FTP, SFTP, SSH, RDP, CIFS/SMB, NFS).
  • Knowledge of operating systems (Windows, Unix/Linux, MacOS).
  • Experience with scripting/programming languages (Python, Bash, PowerShell, .NET) and regular expressions.
  • Understanding of secure software development, microservices architecture, and DevSecOpspractices.
  • Strong written/verbal communication; ability to work with SMEs, executives, and cross-discipline stakeholders.
  • Proficiency with DLP, encryption concepts, endpoint management, and cloud security configurations.
  • Practical experience with digital forensics, incident response, malware analysis, and threat intelligence.

Experience & Qualifications

• 3+ years in cybersecurity, consulting, or Big4/equivalent environment.
  • Track record in leadership, mentoring, project and client management.
  • Experience with SOC 1/2/3 audits and IT risk management.
  • Proven success in professional services sales and pre-sales engagements.
  • 3+ years of experience in DevSecOps and automation of security processes in CI/CD pipelines.
  • 5+ years of application security experience (DAST, SAST, SCA, ASM).
  • Experience with infrastructure operations, IT service management, and enterprise security monitoring.
  • Relevant certifications preferred: CISSP, CEH, GCIH, GCFA, GCSA, GMON, Security+, CSSLP, or equivalent.
  • Bachelor's degree in Information Security, Computer Science, or equivalent.
  • Fluent in written and spoken English.

Job Type: Full-time

Pay: From ₹25,000.00 per month

Work Location: Remote

Candidate should have experience in GCP from Cloud security(Pure GCP profiles not required).

Use below info identifying correct profiles

GCP Security Specialist:

Skills: AppSec (SAST, DAST), Network Security, GPC Native Cloud Security , SSDLC, knowledge Security compliance standards, DevSecOps

Tools like: Native GCP security services, Burp Suite, CheckMarx, Vracode, fortify, Qualys.

Certification: Google cloud "Professional Cloud Security Engineer" + -MANDATORY

1.GCP Security Specialist

Assist and collaborate with Client & Internal stakeholders on the end-to-end migration strategy and architecture from AWS to GCP

Provide technical oversight and assistance for the execution of application and data migrations, ensuring secure data transit and encryption at rest.

Help establish and enforce cloud architecture governance, security standards, and best practices across all migrations streams in collaboration with stakeholders.

Act as a primary technical and cybersecurity liaison, offering support to client IT, business, and security stakeholders.

Provide expert guidance on cloud-native security services, Identity & Access Management, Data Security, Cloud Security, Vulnerability governance, Application Security, and network security across GCP.

Support to ensure strict compliance with industry standards ( e.g HIPAA, GDPR, etc) and client policies throughout the migration.

Facilitate and contribute to technical discussions and workshops, and present security solutions clearly to both technical and non-technical audiences.

Proactively identify, assess, and mitigate technical and cybersecurity risks throughout the migration journey

Support the optimization of cloud costs, performance, and continuously monitor the security posture of migration applications

About Position:

This role focuses on designing automation, implementing systems, and maintaining CI/CD pipelines in a hybrid environment across AWS, Azure, and Google clouds. You will be responsible for supporting day-to-day security operations, maintaining security products, and collaborating with various teams to ensure compliance with security policies and procedures. The work is largely project-based, requiring you to lead and participate in security projects and contribute to ongoing security improvements and audits.

• Role: Cloud Security
• Location: All Persistent Locations
• Experience: 12 to 16Years
• Job Type: Full Time Employment

What You'll Do:

• Develop and enforce security controls for 200+ AWS, GCP, and Azure cloud environments as well as a fleet of end user laptops. Maintain and implement security tools, integrating commercial software with internal systems.
• Conduct and manage vulnerability scanning, collaborating with IT, Product Engineering, and other teams to address findings. Enhance runtime protection policies and SIEM parsing rules.
• Respond to security alerts, analyze logs and XDR findings via the SIEM for potential incidents. Champion automation using tools like Terraform, Ansible, and CloudFormation.
• Participate in incident response to investigate and remediate security events. Identify root causes of security issues, prioritize threats, and implement corrective actions, leveraging automation where possible.
• Develop and enforce access management strategies, focusing on single sign-on for AWS, Azure, Google Cloud, and other platforms. Advocate and enforce system security policies and user access plans.
• Oversee and participate in security assessments and audits, collaborating on remediation plans.
• Prepare and present technical reports and briefings. Educate colleagues on information security managementProven ability to design, test, and implement automation and technical solutions.
• Experience managing cloud environments and implementing DevOps concepts and CI/CD technologies.
• Familiarity with runtime protection and endpoint management solutions (e.G., Trend Micro CloudOne, Sentinel One, Automox, Rapid7 Insight Agent

Expertise You'll Bring:

• Degree in B.E or B. Tech only
• 7 – 8 years of experience in DevSecOps Engineer, or DevOps Engineer.
• AWS Certified DevOps Engineer or Solutions Architect, or equivalent certification in Azure or Google Cloud.
• Proficiency in at least one programming language (Python, Ruby, PowerShell, Golang, etc.) and/or one Infrastructure as Code framework (Terraform, CloudFormation, Ansible, etc.)
• Knowledge of industry and regulatory frameworks such as SOC2 and HITRUST
• Experience with incident response scenarios
• Excellent written and verbal communication skills
• Strong attention to detail and passion for processes and systems. Ability to participate in a 24/7/365 on-call rotation

Benefits:

• Competitive salary and benefits package
• Culture focused on talent development with quarterly growth opportunities and company-sponsored higher education and certifications
• Opportunity to work with cutting-edge technologies
• Employee engagement initiatives such as project parties, flexible work hours, and Long Service awards
• Annual health check-ups
• Insurance coverage: group term life, personal accident, and Mediclaim hospitalization for self, spouse, two children, and parents

Values-Driven, People-Centric & Inclusive Work Environment:

Persistent Ltd. is dedicated to fostering diversity and inclusion in the workplace. We invite applications from all qualified individuals, including those with disabilities, and regardless of gender or gender preference. We welcome diverse candidates from all backgrounds.

• We support hybrid work and flexible hours to fit diverse lifestyles.
• Our office is accessibility-friendly, with ergonomic setups and assistive technologies to support employees with physical disabilities.
• If you are a person with disabilities and have specific requirements, please inform us during the application process or at any time during your employment

Let’s unleash your full potential at Persistent - persistent.Com/careers

“Persistent is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind.”

Exp : 10+ years

Location : Hyderabad

Responsibilities

· Design, develop, and implement cloud security architectures and solutions for cloud environments.

· Identify major platform/solution deficiencies and define/craft pragmatic approaches on how to remediate them at scale.

· Ensuring that platforms/solutions are securely implemented as per defined policies, standards and industry best practices.

· Master consistent security practices, Zero Trust principles, centralized management, and cloud security best practices, while staying current with the latest security standards, systems, and cloud advancements.

· Document implementations comprehensively through technical documentation and run books.

· Provide subject matter expertise on information security architecture and systems engineering to other IT and business teams.

· Utilize Cloud Access Security Broker (CASB) solutions to enhance visibility and control over cloud applications.

· Deploy cloud workload protection strategies to safeguard cloud applications and services.

Desired Qualifications :

· 3 to 9 years of experience in designing & hands-on implementing secure cloud environment for large scale enterprise.

· Hands-on experience with cloud-native security services and multi-tenant environments.

· Experience with security tools and technologies relevant to cloud environments, including cloud workload protection, CASB, and CNAPP.

· Hands on experience in working with CWM, CWPP, CSPM,

· Excellent communication and collaboration abilities.

· Strong analytical and problem-solving skills.

Role: AWS Cloud Security Engineer

Exp: 8-11 Years

Work mode: Hybrid (3 day a week)

Fulltime

Location: Any Altimetrik

Core Skills (Required)

• Cloud Security Expertise: Working knowledge of cloud-native security controls across AWS, Azure, or GCP (IAM, encryption, VPC/networking, storage policies).
• Remediation Execution: Hands-on experience triaging and remediating security misconfigurations using runbooks or platform-guided steps.
• Threat & Vulnerability Awareness: Familiarity with common cloud vulnerabilities, misconfig patterns, and incident tagging or classification approaches.
• Scripting & Automation: Ability to write or modify scripts (e.G., Python, PowerShell, Bash) to support patching, tagging, or enforcement automation.
• Agile Teaming: Experience working in Agile sprints, contributing to structured backlogs, standups, and retrospectives.
• Attention to Detail: Strong analytical and documentation skills to track remediated issues, exceptions, and patch histories.

Security Certifications: AWS Security Specialty, Azure Security Engineer, GCP Security Engineer (optional but preferred)

If you find this interested, please contact /

Position : Cloud Security Architect

Location : Belapur, Mumbai

Experience : 12yrs+

• Minimum 12 years’ experience in IT / IT Security / Information Security in Banking, Financial Services and Insurance (BFSI)/ Non-Banking Financial Company (NBFC)/ Payment industries/IT MNCs, out of which at least past 5 years should have been in Cloud deployments.

Essential:

• Significant experience with deploying/ managing private and public cloud deployments, virtualized environment, and containerization platforms.
• Hands-on experience in deployment of cloud infrastructure and cloud security technology
• Should have experience with Azure / AWS / GCP/ VMware Cloud Foundation/ OCI
• Should have experience in Tanzu Kubernetes Grid/Openshift/OCI and Devsecops
• Experience in Inter-technology, Inter-OEM, inter-datacentre and inter-cloud integration from security perspective.
• Experience in Cloud Security Solutions
• Proficient with Cloud Security Solutions and Cloud Technologies including CASB/ CSPM/ CWPP/ CNAPP/ Micro segmentation/ Virtualization technologies/ containerization technologies.
• Thorough in concept of high availability

Certifications:

- Any one of OEM certification –

(VMware/Azure/GCP/AWS/OCI etc.).

- (CCSP/CCSK/GCSA/CompTIA Cloud+/ VCAP etc.).

Preferred

Additional technical certification like CISA/CISM/CISSP/ GSEC/ CompTIA Security+/ SSCP

Job Title: Vulnerability Management Specialist (AWS & Wiz)

Client: HPE

Location: India, remote

Duration: 12+ months, extendable

• We are seeking a skilled Vulnerability Management Specialist with hands-on experience in AWS environments and Wiz (cloud security posture management).
• The ideal candidate will be responsible for identifying, assessing, and remediating vulnerabilities across our cloud infrastructure, ensuring compliance with security best practices, and collaborating with cross-functional teams to strengthen our security posture.

Key Responsibilities

• Lead and manage vulnerability management processes for AWS-hosted environments.
• Use Wiz to continuously monitor, identify, and prioritize vulnerabilities across cloud workloads, applications, and configurations.
• Perform regular vulnerability scans, risk assessments, and reporting.
• Partner with DevOps, Cloud Engineering, and Application teams to drive remediation and patching efforts.
• Maintain an inventory of assets and ensure alignment with security baselines.
• Track emerging threats, zero-day vulnerabilities, and recommend mitigation strategies.
• Support security audits, compliance efforts (e.G., ISO, SOC 2), and risk assessments.
• Develop and deliver metrics/dashboards on vulnerability status and remediation progress.

Required Skills & Qualifications

• 3–6 years of experience in cybersecurity, vulnerability management, or cloud security.
• Strong hands-on experience with AWS services (IAM, EC2, S3, Lambda, CloudTrail, etc.).
• Practical experience with Wiz or similar Cloud Security Posture Management (CSPM) tools.
• Solid understanding of vulnerability scanning, patch management, and remediation processes.
• Familiarity with common security standards (NIST, CIS Benchmarks, OWASP).
• Strong collaboration and communication skills to work with technical and non-technical teams.

Preferred Qualifications

• AWS Security Specialty or Solutions Architect certification.
• Knowledge of container security (EKS, Kubernetes, Docker).
• Experience with scripting/automation (Python, Bash, Terraform).
• Exposure to SIEM tools and incident response practices.