Location
Delhi | India
Job description
Application Link -
About Us Infra360 Solutions is a services company specializing in Cloud, DevSecOps, Security, and Observability solutions. We help technology companies adapt DevOps culture in their organization by focusing on long-term DevOps roadmap. We focus on identifying technical and cultural issues in the journey of successfully implementing the DevOps practices in the organization and work with respective teams to fix issues to increase overall productivity. We also do training sessions for the developers and make them realize the importance of DevOps. We provide these services - DevOps, DevSecOps, FinOps, Cost Optimizations, CI/CD, Observability, Cloud Security, Containerization, Cloud Migration, Site Reliability, Performance Optimizations, SIEM and SecOps, Serverless automation, Well-Architected Review, MLOps, Governance, Risk & Compliance. We do assessments of technology architecture, security, governance, compliance, and DevOps maturity model for any technology company and help them optimize their cloud cost, streamline their technology architecture, and set up processes to improve the availability and reliability of their website and applications. We set up tools for monitoring, logging, and observability. We focus on bringing the DevOps culture to the organization to improve its efficiency and delivery.
Job Description Who are we…
Infra360 Solutions is a services company specialised in Cloud, DevSecOps, Security, and Observability solutions. We help technology companies adapt DevOps culture in their organisation by focusing on the long-term DevOps roadmap. We focus on identifying technical and cultural issues in the journey of successfully implementing the DevOps practices in the organisation and work with respective teams to fix issues to increase overall productivity. We also do training sessions for the developers and make them realise the importance of DevOps.
We provide these services - DevOps, DevSecOps, FinOps, Cost Optimisations, CI/CD, Observability, Cloud Security, Containerisation, Cloud Migration, Site Reliability, Performance Optimisations, SIEM and SecOps, Serverless automation, Well-Architected Review, MLOps, Governance, Risk & Compliance. We do assessments of technology architecture, security, governance, compliance and DevOps maturity model for any technology company and help them optimise their cloud cost, streamline their technology architecture, and set up processes to improve the availability and reliability of their website and applications. We set up tools for monitoring, logging and observability. We focus on bringing the DevOps culture to the organisation to improve its efficiency and delivery.
Our Mission Our mission is to help customers achieve their business objectives by providing innovative, best-in-class consulting, IT solutions and services and to make it a joy for all stakeholders to work with us. We function as a full stakeholder in business, offering a consulting-led approach with an integrated portfolio of technology led solutions that encompass the entire Enterprise value chain.
Our Customer-centric Engagement Model defines how we engage with you, offering specialised services and solutions that meet the distinct needs of your business.
Our Culture Culture forms the core of our foundation and our effort towards creating an engaging workplace has resulted in Infra360 Solution Pvt Ltd.
Our Tech-Stack - Azure DevOps, Azure Kubernetes Service, Docker, Active Directory (Microsoft Entra)
- Azure IAM and managed identity, Virtual network, VM Scale Set, App Service, Cosmos
- Azuer, MySQL Scripting (PowerShell, Python, Bash),
- Azure Security, Security Documentation, Security Compliance,
- AKS, Blob Storage, Azure functions, Virtual Machines, Azure SQL
- AWS - IAM, EC2, EKS, Lambda, ECS, Route53, Cloudformation, Cloudfront, S3
- GCP - GKE, Compute Engine, App Engine, SCC
- Kubernetes, Linux, Docker & Microservices Architecture
- Terraform & Terragrunt
- Jenkins & Argocd
- Ansible, Vault, Vagrant, SaltStack
- CloudFront, Apache, Nginx, Varnish, Akamai
- Mysql, Aurora, Postgres, AWS RedShift, MongoDB
- ElasticSearch, Redis, Aerospike, Memcache, Solr
- ELK, Fluentd, Elastic APM & Prometheus Grafana Stack
- Java (Spring/Hibernate/JPA/REST), Nodejs, Ruby, Rails, Erlang, Python
About You We are seeking a highly skilled and motivated Security Engineer with 2-4 years of experience to join our dynamic team. The ideal candidate will have a strong background in Cloud Security, Security Governance, and Vulnerability Assessment and Penetration Testing (VAPT). As a Security Engineer, you will play a crucial role in safeguarding our organization's assets and ensuring the confidentiality, integrity, and availability of our systems and data.
What does it hold for you - You will play a key role in defining and implementing robust security measures, contributing directly to the overall security posture of our organization.
- Get hands-on experience with leading cloud platforms such as AWS, GCP, and Azure, ensuring you stay at the forefront of technology advancements in the rapidly evolving field of cloud security.
- Engage in regular security assessments and audits, honing your skills in identifying vulnerabilities and developing effective mitigation strategies.
- Gain experience with open-source tools such as OWASP ZAP, furthering your expertise in application security and securing against OWASP Top 10 vulnerabilities.
- Actively contribute to fostering a culture of security awareness across the organization, making a lasting impact on our overall security mindset.
Requirements Apply if you have…
- Strong knowledge of networking protocols and security architecture.
- Implemented and maintained robust security measures for IT and cloud-based infrastructure.
- Conducted regular security assessments and audits to identify vulnerabilities and risks.
- Collaborated with cross-functional teams to ensure security best practices are integrated into the development lifecycle.
- Developed and enforced security policies, standards, and procedures.
- Proficiency in conducting VAPT using industry-standard tools to identify and remediate security vulnerabilities.
- Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), or Offensive Security Certified Professional (OSCP) is a plus.
- Conducted security awareness programs and training sessions for clients & for internal employees. Kept the team informed about the latest cybersecurity trends, threats, and technologies.
- Hands-on experience with some of the following:
- DevSecOps: Implement various tools and technologies for SAST, DAST, image scanning, container scanning, Kubernetes manifests files, Terraform scripts with different CI/CD tools like Github/Gitlab
- SIEM and SecOps: Setting up security operations centre with ELK, Splunk etc and helping clients with real-time security monitoring and threat modelling
- Application Security: Web Application Firewall (AWS & CloudFlare)
- Cloud Security: Cloud Governance, SCP Policies, IAM Policies, AWS Security Hub, Azure Security Center, Google Cloud Security Command Center
- Vulnerability Assessment and Penetration Testing (VAPT): Nessus, Qualys, Burp Suite, Metasploit
- Security Policy, Governance & Compliance: ISMS (ISO/IEC 27001), NIST Cybersecurity Framework, CIS Controls
- Incident Response and Management: Develop and execute incident response plans to address security incidents promptly and Collaborate with cross-functional teams to investigate and resolve security incidents.
- Open-source Tools: OWASP ZAP (Zed Attack Proxy), Security Onion, Snort
- Familiarity with OWASP Top 10 vulnerabilities and mitigation strategies
- Implementing solutions for DLP, IPS/IDS for SoC2 and other compliances
If you are a passionate and experienced Security Engineer looking to make a significant impact in a dynamic and growing organization, we encourage you to apply. Join us in our mission to ensure the highest level of security across our systems and services.
Interview Process Application Screening= Test/Assessment= 2-3 Rounds of Tech Interview= CEO Round= Final Discussion
Know more about us…
To learn more about us and our team, visit
Skills: security,cloud,technology,devops,cloud security,architecture,azure,aws,vapt,ccsp,cissp,oscp,owasp,owasp top ten,information security governance,compliance
Job tags
Salary
