Security Engineer II

Security Engineer with 3\u20135 years of experience responsible for end\-to\-end security across cloud (AWS, GCP) and on\-prem infrastructure. Strong expertise in implementing security controls, managing identity and access, securing network architectures, and driving compliance initiatives.<\/span><\/span><\/span><\/span>
<\/span><\/span><\/p>

Hands\-on experience in cloud security, vulnerability management, incident response, and security automation. Capable of designing secure systems, enforcing best practices, and maintaining comprehensive documentation for audits and operational excellence.<\/span><\/span><\/span><\/span>
<\/span><\/span><\/p>

Own and manage end\-to\-end security posture across AWS, GCP, and on\-prem environments<\/span><\/span><\/span><\/span>
<\/span><\/span><\/p><\/li>
Design and implement secure cloud architectures, including IAM, network security, and data protection<\/span><\/span><\/span><\/span>
<\/span><\/span><\/p><\/li>
Define and enforce security best practices, policies, and standards<\/span><\/span><\/span><\/span>
<\/span><\/span><\/p><\/li>
Manage identity and access controls (IAM), including least privilege and role\-based access<\/span><\/span><\/span><\/span>
<\/span><\/span><\/p><\/li>
Implement and monitor security tools (SIEM, EDR, CSPM, vulnerability scanners)<\/span><\/span><\/span><\/span>
<\/span><\/span><\/p><\/li>
Secure infrastructure across compute, storage, networking, and Kubernetes environments<\/span><\/span><\/span><\/span>
<\/span><\/span><\/p><\/li>
Collaborate with DevOps and engineering teams to embed security into CI/CD pipelines (DevSecOps)<\/span><\/span><\/span><\/span>
<\/span><\/span><\/p><\/li><\/ul>
Security Operations<\/span><\/span><\/b><\/span><\/span>
<\/span><\/span><\/p>
- Conduct vulnerability assessments, risk analysis, and remediation tracking<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
- Handle incident response, including detection, triage, root cause analysis, and resolution<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
- Monitor logs, alerts, and security events across environments<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
- Ensure patch management and system hardening across cloud and on\-prem systems<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
- Perform periodic access reviews and audit checks<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li><\/ul>
  Compliance & Governance<\/span><\/span><\/b><\/span><\/span>
  <\/span><\/span><\/h3>
  Implement and maintain compliance with standards like ISO 27001, CIS Benchmarks, NIST, etc.<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Support internal and external security audits and certifications<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Maintain asset inventory, risk registers, and compliance documentation<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Ensure adherence to data protection and privacy requirements<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li><\/ul>
  Documentation & Collaboration<\/span><\/span><\/b><\/span><\/span>
  <\/span><\/span><\/h3>
  Create and maintain security documentation, including:<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Policies and standards<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Runbooks and SOPs<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Incident response playbooks<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Audit and compliance reports<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li><\/ul>
  Work closely with engineering, ML, and platform teams to ensure secure deployments.<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Communicate security risks and recommendations clearly to stakeholders<\/span><\/span><\/span><\/span>
  <\/p><\/li><\/ul><\/div><\/span>
  Requirements<\/h3>
  Strong hands\-on experience in cloud security (AWS & GCP)<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Solid understanding of:<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  IAM, VPCs, firewalls, VPNs<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Encryption (at rest & in transit)<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Network security and segmentation<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li><\/ul>
  Experience with security tools (SIEM, vulnerability scanners, cloud security tools)<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Knowledge of Linux systems and hardening practices<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Familiarity with DevSecOps practices and CI/CD security<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Good scripting skills (Bash/Python)<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li><\/ul>
  Good to Have<\/span><\/span><\/b><\/span><\/span>
  <\/span><\/span><\/h2>
  Experience with Kubernetes security (GKE/EKS)<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Exposure to Terraform or Infrastructure as Code security<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Knowledge of container security and image scanning<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Experience with AI/ML infrastructure security or GPU workloads<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Understanding of privacy frameworks and data governance<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li><\/ul>
  Soft Skills<\/span><\/span><\/b><\/span><\/span>
  <\/span><\/span><\/h2>
  Strong ownership and accountability for security posture<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Excellent documentation and communication skills<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Attention to detail with a proactive approach to risk management<\/span><\/span><\/span><\/span>
  <\/span><\/span><\/p><\/li>
  Ability to work cross\-functionally with engineering and product teams<\/span><\/span><\/span><\/span>
  <\/p><\/li><\/ul><\/div><\/span>
  Benefits<\/h3>
  Wadhwani AI \- Full Time Employee Benefits (Not applicable for Intern or Contract Roles)<\/span><\/span><\/span><\/span><\/span>
  <\/span><\/div>
  Insurance Benefits \- Medical Insurance, OPD Coverage, Accidental Insurance, Life Insurance.<\/span><\/span><\/span><\/span><\/span>
  <\/span><\/span><\/li>
  Wellness Program \- Employee Assistance Program, Annual Health Check\-Ups, Onsite Medical Centers, Emergency Support System.<\/span><\/span><\/span><\/span><\/span>
  <\/span><\/span><\/li>
  Parental Support \- Maternity Benefit, Travel Reimbursement for Expectant Mothers during Last Trimester, Paternity Benefit, Day Care Support Program<\/span><\/span><\/span><\/span><\/span>
  <\/span><\/span><\/li>
  Mobility Benefits \- Travel Policy, Relocation and Deputation benefits,<\/span><\/span><\/span><\/span><\/span>
  <\/span><\/span><\/li>
  Statutory Benefits \- Employee PF Contribution, Gratuity, Leave Encashment<\/span><\/span><\/span><\/span><\/span>
  <\/span><\/span><\/li>
  Other Benefits \u2013 Unlimited Leave Policy, Professional Development Policy, Referral Bonuses, Internet and Telephone Allowance.<\/span><\/span><\/span><\/span><\/span>
  <\/span><\/span><\/li><\/ul>
  We care deeply about the well\-being of our employees and their families. You will get an opportunity to take on roles beyond a defined job description. Take a look at our website <\/span>www.wadhwaniai.org<\/span><\/a> to learn more about our work on AI for Social Impact. These are just some of the reasons why working with us is more than just a job \u2014 it's a chance to grow, thrive and contribute to society.<\/span><\/span><\/span><\/span><\/span>
  <\/div><\/span>