Security Engineer

About The Position

Responsibilities

• Design and implement secure cloud architectures aligned with best practices and enterprise security principles.
• Define security guardrails, encryption standards, and cloud-native security configurations.
• Support secure deployments across multi-cloud environments (AWS, Azure, GCP).
• Monitor cloud workloads and infrastructure for security threats, anomalies, and vulnerabilities.
• Perform vulnerability assessments, security scans, and remediation follow-ups.
• Collaborate with SOC teams to investigate and respond to security incidents.
• Implement and manage identity and access management policies, including RBAC and least-privilege principles.
• Configure authentication, authorization, SSO, MFA, and privileged access controls.
• Conduct periodic access reviews, entitlement checks, and IAM audits.
• Ensure compliance with security regulations, standards, and frameworks (ISO 27001, SOC2, GDPR, etc.).
• Maintain cloud security documentation, policies, and evidence for audits.
• Implement governance controls and automate compliance monitoring where possible.
• Configure and manage network segmentation, firewalls, security groups, WAF, IDS/IPS, and perimeter protections.
• Implement encryption controls for data in transit and at rest.
• Ensure secure connectivity between cloud and on-prem environments.
• Configure log aggregation, SIEM integrations, and automated alerting workflows.
• Support SOAR playbooks, incident response automation, and threat intelligence integrations.
• Ensure logging completeness, retention, and traceability for security investigations.
• Contribute to organization-wide cybersecurity strategies, roadmaps, and risk management activities.
• Participate in security reviews, architecture assessments, and cloud security posture management (CSPM).
• Provide guidance to engineering and operations teams on secure cloud practices.