149 Cloud Security Specialists jobs in Mumbai

Role overview:

We are looking for a Cloud Security Engineer with hands-on experience in cloud security assessment, threat mitigation, and remediation activities across major cloud platforms AWS, Azure, and GCP. This is an on-site role based in Mumbai, requiring strong technical expertise, a proactive approach to security posture improvement, and the ability to work from our office or at client locations as needed.

Key Responsibilities:

• Conduct comprehensive cloud security assessments across AWS, Azure, and GCP environments
• Identify security risks, misconfigurations, and vulnerabilities in cloud infrastructure and services
• Lead the remediation of security findings, working hands-on with engineering and DevOps teams to fix issues
• Implement security best practices for IAM, network controls, encryption, and resource configuration
• Deploy and fine-tune cloud-native security tools (e.g., AWS GuardDuty, Azure Defender, GCP Security Command Center)
• Design and enforce secure cloud architectures aligned with industry standards and evolving threat landscapes
• Assist in incident response and post-incident remediation in cloud environments
• Document security gaps, remediation steps, and validation procedures for internal and external stakeholders
• Continuously monitor and improve cloud security posture using manual reviews and automated tooling
• Stay up-to-date with emerging threats, vulnerabilities, and new features across AWS, Azure, and GCP

Requirements:

• Experience in cloud security roles with assessment and remediation focus
• Proficiency in security tools and services offered by AWS, Azure, and GCP
• Hands on experience in conducting manual and automated security reviews of cloud infrastructure and remediating findings
• Good understanding of IAM, network security, encryption, and cloud-native security tools
• Experience in fixing issues and remediating findings

Benefits:

• Flat Hierarchy: Enjoy a collaborative environment where every voice matters.
• Flexible Work Hours: Tailor your schedule to fit your lifestyle and enhance work- life balance.
• Dynamic Team: Join a vibrant, forward-thinking group of young professionals.
• Inclusive Culture: Experience an open and supportive work atmosphere that encourages creativity.
• Career Development: Benefit from structured career paths that align with your goals.
• Mentorship Opportunities: Receive guidance and support from experienced mentors to help you grow.

Role & responsibilities

1. Possess strong understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of a cloud security program

2. Support in design, implementation and configuration of the Cloud security systems

3. Lead cloud security assessments and provide recommendations on required configurations for client cloud platforms (such as AWS, Azure, GCP, Alibaba Cloud, Oracle Cloud) and environments based on Cloud Cyber Risk Framework and industry standard frameworks such as PDP, GDPR, ISO, CSA-CSM and NIST

4. Provide support for escalated incidents or critical situations

5. Interface with Engineering and assist with testing or troubleshooting

6. Reproduce issues to verify problems and provide feedback to Engineering and teams

7. Contribute to development and maintenance of Information Security Policies, Standards and Guidelines

8. Identify security gaps or concerns pertaining to new infrastructure or application build out. 9. Troubleshoot problems with cloud infrastructure (e.g., domain name service, virtual network peering, dedicated cloud connectivity services) and resources (e.g., virtual machines, virtual networks, cloud databases) in a multi-cloud vendor environment and lead analysis of technical platform issues, and resolution as part of cyber risk mitigation steps

9. Gather evidence, perform remediation, and work with the IT GRC vertical to support audit efforts.

10. Create and maintain documentation of departmental security procedures pertaining to cloud security

11. Serve as an expert on cloud cyber risk for other business and technology stakeholders.

12. Maintain and build effective, professional relationships with third party vendors and service providers that result in timely delivery of requirements and the highest standards of quality and cost effectiveness

13. Work with internal stakeholders to gather requirements and develop the most effective solutions

14. Keep abreast with latest trends in the field of cloud security

15. Participate in seminars/conferences/forums to keep up-to-date with the industry best practices

Preferred candidate profile

1. Cloud computing experience (AWS, AliCloud, Azure), and in particular, CloudFormation, EC2, EMR, S3, Redshift, RDS, SQS and AutoScaling Groups

2. Experience in patch management and vulnerability scanning

3. Familiarity with industry standards, guidelines, and regulatory compliance requirements related to information security and cloud computing such as ISO 27001, Cloud Security Alliance, NIST 800-53, PCI DSS, SOC2 and FedRamp

4. Strong analytical & problem-solving skills with ability to translate ideas into practical implementation

5. Ability to manage stakeholder relationships including team members, vendors and partners 6. Excellent leadership and communication skills with ability to present and communicate effectively with both technical and non-technical audience

6. Ability to provide technical and professional leadership, guidance, and training to others

Let’s be #BrilliantTogether

ISS STOXX is looking for a Cloud Security Engineer  to join our team in Mumbai (Goregaon East), India.

Overview:

We are looking for a talent to bring technical expertise to the development and deployment of our cutting-edge financial intelligence platform. In this role, you will leverage your technical expertise and innovative mindset to lead the design, implementation, operation and optimization of our platform infrastructure, ensuring its ability to deliver efficient and reliable data services to our global client base. As a senior member of technical team, you will collaborate with cross-functional peers and stakeholders to drive continuous improvement initiatives and ensure our platform remains at the forefront of investment management technology.

Responsibilities:

Qualifications:

#MIDSENIOR

#STOXX

#LI-AK1

What You Can Expect from Us

At ISS STOXX, our people are our driving force. We are committed to building a culture that values diverse skills, perspectives, and experiences. We hire the best talent in our industry and empower them with the resources, support, and opportunities to grow—professionally and personally.

Together, we foster an environment that fuels creativity, drives innovation, and shapes our future success.

Let’s empower, collaborate, and inspire.

Let’s be #BrilliantTogether.

About ISS STOXX

ISS STOXX GmbH is a leading provider of research and technology solutions for the financial market. Established in 1985, we offer top-notch benchmark and custom indices globally, helping clients identify investment opportunities and manage portfolio risks. Our services cover corporate governance, sustainability, cyber risk, and fund intelligence. Majority-owned by Deutsche Börse Group, ISS STOXX has over 3,400 professionals in 33 locations worldwide, serving around 6,400 clients, including institutional investors and companies focused on ESG, cyber, and governance risk. Clients trust our expertise to make informed decisions for their stakeholders' benefit.

STOXX® and DAX® indices comprise a global and comprehensive family of more than 17,000 strictly rules-based and transparent indices. Best known for the leading European equity indices EURO STOXX 50®, STOXX® Europe 600 and DAX®, the portfolio of index solutions consists of total market, benchmark, blue-chip, sustainability, thematic and factor-based indices covering a complete set of world, regional and country markets. STOXX and DAX indices are licensed to more than 550 companies around the world for benchmarking purposes and as underlyings for ETFs, futures and options, structured products, and passively managed investment funds. STOXX Ltd., part of the ISS STOXX group of companies, is the administrator of the STOXX and DAX indices under the European Benchmark Regulation.

Visit our website:

View additional open roles:

Institutional Shareholder Services (“ISS”) is committed to fostering, cultivating, and preserving a culture of diversity and inclusion. It is our policy to prohibit discrimination or harassment against any applicant or employee on the basis of race, color, ethnicity, creed, religion, sex, age, height, weight, citizenship status, national origin, social origin, sexual orientation, gender identity or gender expression, pregnancy status, marital status, familial status, mental or physical disability, veteran status, military service or status, genetic information, or any other characteristic protected by law (referred to as “protected status”). All activities including, but not limited to, recruiting and hiring, recruitment advertising, promotions, performance appraisals, training, job assignments, compensation, demotions, transfers, terminations (including layoffs), benefits, and other terms, conditions, and privileges of employment, are and will be administered on a non-discriminatory basis, consistent with all applicable federal, state, and local requirements. 

Job Profile: Cloud Security Architect

Total profile : 1 number

Location : Chennai / Mumbai

Key Responsibilities:

• Architect and Design : Develop and implement secure cloud architectures for applications and infrastructure, focusing on microservices, Kubernetes, and containerization.
• Cloud Service Providers : Leverage cloud service providers such as AWS to build scalable and secure solutions.
• Cloud Security Posture Management : Implement and manage cloud security posture management tools and practices to ensure continuous compliance and security monitoring.
• Infrastructure Security : Design and implement security measures for cloud infrastructure, including network security, identity and access management, and data protection.
• Application Security: Collaborate with development teams to integrate security into the software development lifecycle, focusing on modern application security practices within a cloud environment.
• Cloud Security Frameworks : Develop and enforce cloud security frameworks and best practices across the organization.
• Risk Assessment: Conduct risk assessments and vulnerability assessments on cloud environments to identify and mitigate security risks.
• Incident Response : Develop and implement incident response plans and procedures for cloud environments.
• Compliance: Ensure cloud environments comply with relevant industry standards and regulations CSA Star CCM, PCI DSS etc

Technical Skills:

• In-depth knowledge of Multi cloud platforms.
• Strong understanding of Kubernetes, Docker, and container security.
• Proficiency in cloud security posture management tools and practices.
• Experience with infrastructure-as-code (IaC) tools such as Terraform or AWS Cloud Formation.
• Familiarity with modern application security practices and tools (e.g., SAST, DAST, RASP).
• Strong scripting and automation skills (e.g., Python, Bash).

Soft Skills :

Excellent communication and collaboration skills, strong problem-solving abilities, and a proactive approach to security.

About the Company :

SA Technologies is a leading CMMI Level 5 certified organization in  IT services, consulting, and staffing company headquartered in California, with a significant presence across the United States, Canada, and India. With over two decades of experience, SA Tech has established itself as a trusted partner for businesses seeking innovative and scalable technology solutions. The company specializes in delivering end-to-end IT services, including application development, cloud computing, enterprise resource planning (ERP), and IT staffing.

Job Role Job Description - Cloud Architect - Security We are looking for Cloud Architects for designing Cloud Security Solutions Architect will be architecting, designing and implementing security framework. He will deliver hands-on, business-oriented strategic and technical consulting to requirements towards cloud architecture and solutions. Key Responsibilities Advise customers on security best practices, methodologies and solutions that effectively Deliver architecture guidance, conduct proof-of-concept projects, and conduct customer Collaborate with customers to address security and compliance challenges, and implementing and migrating customer solutions and workloads onto Cloud (Azure / GCP) Understanding customer security and compliance requirements, proposing and delivering Engage with Cloud Architects in migration of existing applications and development of new manage risk. workshops. custom solutions applications on Cloud Plan, Design and Implement various Cloud related solutions and accelerators Conduct Trainings and Evangelize cloud Participate in RFI, RFP & Bids Bachelor's degree in Engineering / Computer Science, Computer Engineering, Information Educational Qualifications Technology. Years of Experience (minimum & maximum) Min: - 12 Years, Max: - 20 Years What are the nature and scope of responsibilities the candidate should have handled? Experience in IT security, compliance and risk management, including privacy, controls, etc. Experience building enterprise security strategy & reference architecture for cloud adoption / hybrid scenario or driving the program's evolution to meet new requirements Hands-on technical expertise in Security Architecture, automation, integration, and deployment About: Jio Platforms Limited, is an Indian technology company that specializes in Internet, telecommunications, cloud computing, e-commerce, retail, artificial intelligence and a subsidiary of Reliance Industries Limited, headquartered in Mumbai, India. Established in 2019, Jio Platforms acts as a holding company for India's largest mobile network operator Jio and other digital businesses of Reliance. Experience in Cloud Consulting activities like cloud readiness assessment, Cloud Migration Strategies, TCO calculation, Cloud Governance. Demonstrate the ability to solve complex, multi-system problems Familiarity with compliance & security standards across the enterprise IT landscape Significant technical expertise in Cloud Computing technologies, monitoring tools, encryption tools and best practices, experience with enterprise security solutions such as WAF, IPS, Anti- DDOS, and SIEM. Demonstrated ability to think strategically about business, product, and technical challenges Knowledge & Skills Experience & Strong knowledge of the Reference Architectures of Azure / GCP Understanding of Public / Private / Hybrid Cloud solutions Azure / GCP certified Architect (preferred) Knowledge of Cloud best practices and guidelines. Good Oral and Written communication. Ability to work on a distributed and multi-cultural team. Good understanding of ITSM processes and related tools. Willing to learn and explore new technologies. About: Jio Platforms Limited, is an Indian technology company that specializes in Internet, telecommunications, cloud computing, e-commerce, retail, artificial intelligence and a subsidiary of Reliance Industries Limited, headquartered in Mumbai, India. Established in 2019, Jio Platforms acts as a holding company for India's largest mobile network operator Jio and other digital businesses of Reliance.

Aquanow, a leading infrastructure and liquidity provider that provides institutional and enterprise application platforms for digital assets, is looking for a Cloud Security Engineer to join our technology team in Vancouver or Toronto . This is a unique opportunity to work alongside a highly-experienced team and contribute to the development of a high-growth trading and technology company.

If you want to have your name in the success story of a globalizing company, we look forward to receiving your application to the winning Aquanow team!

What You’ll Do:

• Perform security assessments and audits of our infrastructure, identifying and mitigating security gaps and weaknesses.
• Proven expertise in using Terraform and other infrastructure as code tools, managing vulnerabilities, policies and implementing best practices.
• Partner with Aquanow engineering teams to understand and resolve security incidents that arise on their services.
• Conduct in-depth security reviews of application code, working closely with developers to code securely from the outset and address issues early during coding and testing phases.
• Experience with SAST, SCA, and DAST, with the ability to address real-world challenges in these areas.
• Implement and manage security tools within the CI/CD pipeline, focusing on DevSecOps practices
• Monitor and analyze logs, events, and metrics to identify security incidents, potential breaches, and emerging threats.
• Understand runtime security, image scanning, network security, access control, host OS hardening, and vulnerability management in the container lifecycle.
• Develop and maintain incident response plans, procedures, and playbooks for effective handling of security incidents and breaches.
• Design, implement, and maintain security measures for our cloud infrastructure, including VPCs, security groups, IAM roles, and access controls.
• Maintaining security hardening configurations and guidance for the diverse set of services available across our cloud environments.

You’ll Need to Have:

• 5+ years of Security Engineering experience preferably in AWS Cloud and at least 2 of the following areas: cloud security, web application security, incident response, threat hunting, and cyber security operations.
• Bachelor's degree in Computer Science, Information Security, or a related field. Equivalent work experience may be considered.
• Strong knowledge of security principles, best practices, and common vulnerabilities (e.g., OWASP Top 10)
• Familiar with SAST, DAST, Fuzzing, and other tools.
• Experience with Wiz, Prisma Cloud, Jira, Confluence & Terraform / CloudFormation (Infrastructure as a code)
• Familiarity with CI/CD tools such as GitHub Actions, Jenkins or CircleCI.
• Experience with security technologies, such as firewalls, IDS/IPS, SIEM, DLP, antivirus, and vulnerability scanners.
• Good understanding of cloud security architecture, security assessments, audit standards for the Cloud, security threats in the cloud.
• Solid understanding of network protocols, TCP/IP, and network security concepts.
• Ability to work independently and problem solve.

We’d Love to See:

• Automation experience with AWS. Relevant certifications such as AWS Certified Security - Specialty, CISSP, CEH are highly desirable.
• Experience in a global fast moving environment covering multiple time zones.
• Passion in all things security.
• Stay updated with the latest security trends & AI technologies.