security
Posted Apr 24Cloud Security Engineer
at Mesh
Bangalore, IndiaHybrid
Responsibilities
- Lead Platform & Infrastructure Development by architecting scalable, resilient systems using Infrastructure as Code (IaC).
- Design and implement Secure Infrastructure across cloud environments, ensuring a "security-by-default" architecture.
- Manage Cloud Resources and DNS Operations, including zone management, records, and global resolution strategies.
- Optimize performance and defense by deploying and managing WAF, CDN, and Network Firewalls (IDS/IPS).
- Drive CI/CD Automation by integrating security gates, SAST/DAST scanning, and automated Secret Rotation into development pipelines.
- Enforce robust Identity and Access Management (IAM) protocols and oversee VPN & Certificate Management.
- Maintain Cloud Security Posture Management (CSPM) and Infrastructure Observability to proactively identify and remediate misconfigurations.
- Own Compliance and Governance, specifically meeting SOC2 Compliance
Requirements
- We combine a powerful orchestration engine with a seamless consumer app to unlock liquidity for the world.
- Secure containerized workloads by establishing strict Docker & Runtime Security standards.
- Bachelor Degree in Computer Science or related field 15+ years of
- experience in information technology security •
- Experience as a hands on technology leader in a highly technical environment
- experience with Azure (required); familiarity with GCP or AWS is a plus.
- Deep expertise in a specific Infrastructure as Code (IaC) tool such as Terraform and Terragrunt. •
- Experience with container orchestration security, including Kubernetes, service mesh, and serverless architectures. Hands-on
- experience with Cloudflare (WAF, CDN, DNS, Zero Trust) — required;
- experience with other CDN/edge security platforms is a plus.
- Expert understanding of application, network, operating system, and core infrastructure security concepts and concerns
- Working knowledge of common information technology management frameworks and regulations such as ISO 27001/2, NIST, SOC2, GDPR, DORA, etc. - Nice to Have
- CISSP, CISA or SANS GIAC certification - preferred •