W
Workatbackbase2d ago
New
New
(Ecosystem) Principal Cloud Security Engineer
India·HyderabadleadEngineeringSecurity Engineer
0 views0 saves0 applied
Quick Summary
Key Responsibilities
● Own the overall security posture of the Platform. ● Act as the security representative for the team, conducting threat modeling, vulnerability testing, risk analysis, and security assessments,
Requirements Summary
Azure AD, RBAC, PIM, and Conditional Access. ● In-depth knowledge of IAM, RBAC, and access policies in Azure. ● Proven experience in designing and maintaining cloud-based IaaS, PaaS,
Technical Tools
EngineeringSecurity Engineer
About the Role
We are seeking a highly experienced and action-oriented Senior Security Engineer to join the Grand Central Platform team. This role focuses on developing and maintaining the robust security posture of platforms key to our business, including the IPaaS (Integration Platform as a Service) and the AI Agentic platform, which serve both internal employees and external financial
institution customers.
The ideal candidate possesses a strong technical and hands-on approach. You won't just identify vulnerabilities and explain risks; you will actively collaborate with the team to implement fixes. Our team champions the principle of "security as everyone's responsibility," adhering strictly to established security standards and conventions.
institution customers.
The ideal candidate possesses a strong technical and hands-on approach. You won't just identify vulnerabilities and explain risks; you will actively collaborate with the team to implement fixes. Our team champions the principle of "security as everyone's responsibility," adhering strictly to established security standards and conventions.
What You'll Do & Key Responsibilities
1. Platform Security Ownership:
● Own the overall security posture of the Platform.
● Act as the security representative for the team, conducting threat modeling, vulnerability testing, risk analysis, and security assessments, and supporting incident handling.
● Mentor team members and contribute to the growth of the team's security capabilities.
● Propose and drive security initiatives, collaborating across various teams within the
company, and actively participate in the Security Guild.
2. Architecture, Design & Cloud Security Implementation (Azure Focus):
● Collaborate with architects to enforce the “secure by design” principle for new Platform
components.
● Design, implement, and maintain secure cloud infrastructure and controls within Azure
environments.
● Ensure compliance with relevant security standards and regulations through regular
security assessments and risk analyses.
● Implement and maintain cloud security best practices across Azure environments.
● Bring deep expertise to designing and developing architectures that enhance visibility,
detection, mitigation, and observability.
3. Threat and Risk Management:● Conduct comprehensive risk assessments, threat modeling, and penetration testing.
● Identify vulnerabilities and recommend strategic mitigation strategies for cloud security
threats.
● Secure cloud network architectures (Networking & Security).
4. Identity, Access, and Monitoring:
● Design and enforce least privilege access and secure authentication mechanisms
(Identity & Access Management - IAM).
● Maintain security monitoring tools (SIEM, CSPM, EDR), investigate threats, and manage
security incident response.
5. DevSecOps & Automation:
● Embed security into CI/CD pipelines using DevSecOps methodologies.
● Automate security compliance checks and vulnerability assessments.
● Utilize expertise in Terraform or OpenTofu for Infrastructure as Code (IaC) security
automation.
● Collaborate with development teams to integrate security into the Secure SDLC,
promoting secure coding practices and regular security testing.
Required Qualifications
● 8+ years of hands-on experience in cloud security, DevSecOps, or cloud engineering
with a dedicated security focus.
● Deep expertise in Azure cloud security architecture and services.
● Strong experience with Cloud IAM, specifically: Azure AD, RBAC, PIM, and
Conditional Access.
● In-depth knowledge of IAM, RBAC, and access policies in Azure.
● Proven experience in designing and maintaining cloud-based IaaS, PaaS, and SaaS
environments.
● Expertise in Terraform or OpenTofu for IaC security automation.
● Experience with security monitoring tools SIEM, CSPM, EDR (e.g., Azure Sentinel,
Defender for Cloud).
● Strong proficiency in scripting and automation (Python, Go, Bash).
● Solid networking knowledge, including firewalls, VPNs, VNET peering, and WAF.
● Experience in DevSecOps and embedding security into CI/CD pipelines, along with a
strong understanding of Secure SDLC.
● Familiarity with security compliance standards (e.g., NIST, CIS, ISO 27001, SOC 2).
● Familiarity with LLM/AI system vulnerabilities (e.g., prompt injection, data poisoning,
adversarial attacks).
● Demonstrated ability to identify, triage, and resolve security issues across traditional and
AI-based systems. Offensive security experience is a significant plus
● Own the overall security posture of the Platform.
● Act as the security representative for the team, conducting threat modeling, vulnerability testing, risk analysis, and security assessments, and supporting incident handling.
● Mentor team members and contribute to the growth of the team's security capabilities.
● Propose and drive security initiatives, collaborating across various teams within the
company, and actively participate in the Security Guild.
2. Architecture, Design & Cloud Security Implementation (Azure Focus):
● Collaborate with architects to enforce the “secure by design” principle for new Platform
components.
● Design, implement, and maintain secure cloud infrastructure and controls within Azure
environments.
● Ensure compliance with relevant security standards and regulations through regular
security assessments and risk analyses.
● Implement and maintain cloud security best practices across Azure environments.
● Bring deep expertise to designing and developing architectures that enhance visibility,
detection, mitigation, and observability.
3. Threat and Risk Management:● Conduct comprehensive risk assessments, threat modeling, and penetration testing.
● Identify vulnerabilities and recommend strategic mitigation strategies for cloud security
threats.
● Secure cloud network architectures (Networking & Security).
4. Identity, Access, and Monitoring:
● Design and enforce least privilege access and secure authentication mechanisms
(Identity & Access Management - IAM).
● Maintain security monitoring tools (SIEM, CSPM, EDR), investigate threats, and manage
security incident response.
5. DevSecOps & Automation:
● Embed security into CI/CD pipelines using DevSecOps methodologies.
● Automate security compliance checks and vulnerability assessments.
● Utilize expertise in Terraform or OpenTofu for Infrastructure as Code (IaC) security
automation.
● Collaborate with development teams to integrate security into the Secure SDLC,
promoting secure coding practices and regular security testing.
Required Qualifications
● 8+ years of hands-on experience in cloud security, DevSecOps, or cloud engineering
with a dedicated security focus.
● Deep expertise in Azure cloud security architecture and services.
● Strong experience with Cloud IAM, specifically: Azure AD, RBAC, PIM, and
Conditional Access.
● In-depth knowledge of IAM, RBAC, and access policies in Azure.
● Proven experience in designing and maintaining cloud-based IaaS, PaaS, and SaaS
environments.
● Expertise in Terraform or OpenTofu for IaC security automation.
● Experience with security monitoring tools SIEM, CSPM, EDR (e.g., Azure Sentinel,
Defender for Cloud).
● Strong proficiency in scripting and automation (Python, Go, Bash).
● Solid networking knowledge, including firewalls, VPNs, VNET peering, and WAF.
● Experience in DevSecOps and embedding security into CI/CD pipelines, along with a
strong understanding of Secure SDLC.
● Familiarity with security compliance standards (e.g., NIST, CIS, ISO 27001, SOC 2).
● Familiarity with LLM/AI system vulnerabilities (e.g., prompt injection, data poisoning,
adversarial attacks).
● Demonstrated ability to identify, triage, and resolve security issues across traditional and
AI-based systems. Offensive security experience is a significant plus
Location & Eligibility
Where is the job
Hyderabad, India
On-site at the office
Who can apply
IN
Listing Details
- Posted
- June 18, 2026
- First seen
- June 20, 2026
- Last seen
- June 20, 2026
Posting Health
- Days active
- 0
- Repost count
- 0
- Trust Level
- 60%
- Scored at
- June 20, 2026
Signal breakdown
freshnesssource trustcontent trustemployer trust
External application · ~5 min on Workatbackbase's site
Please let Workatbackbase know you found this job on Jobera.
3 other jobs at Workatbackbase
View all →Explore open roles at Workatbackbase.
Similar Security Engineer jobs
View all →Cybersecurity Engineer
T
TrueanomalyincMission Security Engineer II
$95k–$140k/yr
C
ChaosindustriesCybersecurity Engineer, Product Security
$110k–$190k/yr
B
BrunswickgroupSecurity Engineer
YextSenior Security Engineer (Intake - Hyderabad, India)
QuanataRemoteApplication Security Engineer [Remote-US]
$175k–$215k/yr
Remote
Browse Similar Jobs
Devops Engineer2.3kDevOps & Infrastructure2.3kSecurity1.7kEngineering Manager1.3kFullstack Developer1.2kBackend Developer1.1kSoftware Architect1.1kBackend Engineering971Data Engineering933Qa Engineer933Mechanical Engineer900Frontend Developer836Electrical Engineer716Mobile Developer703Frontend Engineering557Design Engineer550Project Engineer526IT & Administration359Process Engineer304Civil Engineer300
Newsletter
Stay ahead of the market
Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.
A
B
C
D
No spam. Unsubscribe at any time.
W
(Ecosystem) Principal Cloud Security Engineer