Zepto
Location
Bangalore | India
Job description
Responsibilities: Champion security across the organization:
Collaborate with various teams to integrate security considerations throughout the software development lifecycle and DevOps cloud operations, primarily on AWS. Architect secure cloud solutions: Design and implement secure cloud infrastructure (AWS) to support the modernization of application systems, ensuring alignment with industry best practices and compliance requirements. Serve as AWS Security SPOC: Become the single point of contact for all AWS security-related matters within the organization. Enhance security controls and procedures: Continuously improve security controls and associated procedures, aligning them with industry standards like ISO 27001 and NIST frameworks. Oversee daily security operations: Provide oversight of day-to-day security activities, including escalations, incident response, and adherence to corporate and divisional policies. Integrate security into DevOps Processes: Proactively identify security requirements, integrate security automation into software development (SDLC), infrastructure operations, and Reliability Engineering DevOps processes. Maintain security compliance: Interpret and analyze security standards and baselines, ensuring adherence to enterprise security policies and regulations. Develop secure architecture patterns: Develop and maintain architecture patterns, standards, and reference architectures for technology platforms, guaranteeing alignment with security policies and clear tracking mechanisms. Conduct security assessments and analyses: Implement and conduct system security assessments, vulnerability analyses, and risk assessments, leveraging tools like SAST and DAST. Plan and implement security systems: Evaluate security technologies, develop security requirements, and plan security systems while adhering to industry standards. Support security initiatives: Assist with PoCs, provide architecture oversight for security, and ensure adherence to enterprise security standards and broader governance frameworks. Automate IT processes: Leverage knowledge and experience to deliver end-to-end automated solutions, including technical implementation of ITIL processes, workflow customisation, ticketing, process automation, report development, dashboard creation, and system configurations. Required Skills / Knowledge Bachelor's degree in Computer Science, Information Systems, or a related field (Master's degree preferred). 4-7+ years of experience in security engineering, security operations, risk & compliance, or other relevant security fields. Demonstrated hands-on experience in applying security best practices. Strong understanding of Infrastructure as Code (IaC) principles and tools like Terraform. Expertise in cloud security, particularly on the AWS platform. In-depth knowledge of AWS security tooling and services (IAM, EKS, S3, etc.). Familiarity with Cloud Security Posture Management (CSPM) tools. Knowledge in enterprise IT security solutions such as Endpoint Protection software, XDR, PAM, SIEM, Email and , DLP Excellent written and verbal communication skills with the ability to effectively communicate complex security concepts to diverse audiences. Strong influencing skills to champion security initiatives and educate staff on security best practices. Ability to thrive in a fast-paced environment and manage multiple priorities effectively. Excellent problem-solving, analytical, and interpersonal skills.Job tags
Salary
