Cloud Security Architect/Developer (9-11 yrs)

Job Title : Cloud Security Compliance Senior Architect/Developer

Exp : 9-11 years

Location : Bengaluru (Hybrid)

Job Description :

Infosys is looking for an experienced Cloud Security Compliance Senior Architect/Developer to join our dynamic team. This is a key role where you will be responsible for ensuring that cloud applications and services are secure, compliant with regulations, and architected to support security best practices. You will work with Python, DevOps tools, and cloud technologies (AWS, Azure, or GCP) to build secure cloud infrastructure, implement compliance frameworks, and integrate security policies into cloud-native environments.

As a Senior Architect/Developer, you will lead the design, implementation, and automation of security and compliance controls in cloud environments. You will collaborate with cross-functional teams to address security challenges and ensure that all cloud services comply with industry standards and regulations. This role is ideal for professionals with deep technical expertise in cloud security, DevOps, and Python, combined with a passion for ensuring the security and compliance of cloud-based applications.

Key Responsibilities :

- Design, implement, and manage cloud security controls and compliance frameworks (e.g., NIST, ISO 27001, GDPR) across AWS, Azure, and GCP environments to ensure secure cloud adoption.

- Python and DevOps practices to automate the deployment of security controls, compliance checks, and security patches across cloud infrastructure.

- Integrate security best practices into CI/CD pipelines using tools like Jenkins, GitLab CI, Docker, and Kubernetes, ensuring that security is embedded in the software development lifecycle.

- Architect and deploy cloud-native security solutions, such as IAM (Identity and Access Management), encryption, network security, and monitoring tools (e.g., AWS CloudTrail, Azure Security Center, GCP Security Command Center).

- Implement security policies, risk assessments, and vulnerability management solutions to maintain continuous compliance and mitigate risks in cloud environments.

- Work closely with cross-functional teams (cloud architects, security teams, compliance officers) to integrate security requirements into cloud architecture and solutions.

- Set up and manage governance frameworks and continuous monitoring of cloud infrastructure, ensuring adherence to security standards and reducing the risk of security breaches.

- Lead or assist in incident response activities, performing root cause analysis, vulnerability assessments, and remediating security gaps in the cloud infrastructure.

- Maintain detailed documentation for cloud security processes, security architecture, compliance audits, and security standards, ensuring audit readiness for clients and regulatory bodies.

- Stay up-to-date with the latest cloud security trends, threats, and compliance regulations, and proactively integrate new security technologies into the cloud environment.

Qualifications & Requirements :

- 9-11 years of hands-on experience in cloud security architecture, compliance, and development with a focus on Python, DevOps, and cloud technologies (AWS, Azure, or GCP).

- Strong experience in cloud security architecture, implementing security controls and compliance frameworks across public cloud platforms (AWS, Azure, GCP).

- Expertise in Python for automating security tasks, integration, and building cloud security solutions.

- Proficient in DevOps tools and practices, including CI/CD pipelines, Jenkins, GitLab CI, Docker, Kubernetes, and automation frameworks like Terraform.

- In-depth knowledge of cloud security services like IAM, encryption, network security, and monitoring tools such as CloudTrail, Security Center, and Security Command Center.]

- Experience with cloud compliance standards (e.g., NIST, ISO 27001, SOC 2, PCI-DSS, GDPR).

- Strong understanding of security best practices for infrastructure and application security in cloud environments.

- Hands-on experience in building and managing security controls and ensuring cloud compliance for regulated industries.

- Strong communication skills to collaborate with internal stakeholders, clients, and external auditors.

- Ability to explain complex security concepts clearly to both technical and non-technical audiences.

- Relevant certifications such as AWS Certified Security Specialty, Azure Security Engineer,

Certified Cloud Security Professional (CCSP), or equivalent.

- Ability to work in the UK shift to engage with clients and stakeholders in the UK time zone.