Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 1K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

RATE NOW!
- ABECA 2025
  
  RATE NOW!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Engaged Employer

Photon Interactive

Compare

4.1

based on 1.7k Reviews

234 Photon Interactive Jobs

AWS DevSecOps Sr. Engineer / Testers (Policy Development & Mapping)

Photon Infotech P Ltd

4.1

based on 1.7k Reviews

3-8 years

Bangalore / Bengaluru

1 vacancy

AWS DevSecOps Sr. Engineer / Testers (Policy Development & Mapping)

Photon Interactive

posted 19d ago

Job Role Insights

Flexible timing

Key skills for the job

Medical Coding Python Social Work Automation Testing Vulnerability Management CCTV Monitoring

+ 4 more

Job Description

About the Role:

We are seeking an experienced and highly motivated Senior AWS DevSecOps Engineer / Tester with expertise in policy development, security automation, and infrastructure-as-code (IaC). The ideal candidate will have a strong background in AWS cloud environments, DevSecOps principles, and security policy mapping and enforcement. This role will focus on creating and automating security policies, mapping them to cloud infrastructure, and ensuring that our security posture remains strong and compliant across all stages of the software development lifecycle.

You will work closely with cross-functional teams to define security requirements, integrate security tools and processes into the CI/CD pipeline, and continuously improve the security automation framework.

Key Responsibilities:

Policy Development & Mapping:

Design, develop, and maintain security policies for AWS environments, ensuring compliance with industry standards (e.g., NIST, CIS, ISO 27001).
Map and integrate security policies into infrastructure and applications deployed on AWS using Infrastructure as Code (IaC) tools such as Terraform, CloudFormation, and AWS CDK.
Create automated processes for security policy enforcement, auditing, and monitoring.
Develop security rules and guardrails using AWS native services (AWS Config, AWS Security Hub, AWS GuardDuty, etc.) and third-party security tools.

DevSecOps Engineering:

Build and maintain the CI/CD pipeline with embedded security testing (SAST, DAST, IAST) and automated compliance checks.
Automate security vulnerability assessments and remediation in the AWS environment using tools like AWS Inspector, Qualys, and other static and dynamic analysis tools.
Collaborate with development teams to implement security in the software development lifecycle (SDLC), shifting security left and automating security testing.
Create and maintain AWS security best practices, security controls, and infrastructure standards.

Testing & Vulnerability Management:

Conduct manual and automated penetration testing, vulnerability assessments, and code reviews focused on AWS-based applications and infrastructure.
Implement automated testing frameworks that validate security policies and configurations (e.g., infrastructure misconfigurations, exposed secrets).
Identify security gaps or vulnerabilities in AWS deployments and work with DevOps and development teams to remediate.
Continuously assess new threats, vulnerabilities, and attack vectors in AWS environments.

Collaboration & Reporting:

Work closely with DevOps, Development, and IT teams to ensure proper integration of security into cloud infrastructure and applications.
Provide regular security assessments, risk analysis reports, and security findings to senior leadership and relevant stakeholders.
Participate in incident response planning and execution, providing expertise in security issues related to AWS environments.
Train development teams on secure coding practices, security testing tools, and best practices for AWS security.

Continuous Improvement & Innovation:

Stay current with emerging trends in DevSecOps, cloud security, and AWS services.
Continuously improve security policies, tools, and processes to adapt to evolving threats.
Contribute to the creation and implementation of security automation frameworks for improved DevSecOps practices.

Required Qualifications:

Experience :

5+ years of experience in AWS cloud environments with a focus on security, DevSecOps, and automation.
At least 3+ years of hands-on experience in security policy development and mapping for cloud infrastructure, specifically AWS.
Deep knowledge of AWS security tools and services, including AWS IAM, AWS KMS, AWS Config, AWS GuardDuty, AWS Shield, AWS WAF, and others.
Strong experience with infrastructure-as-code tools such as Terraform, AWS CloudFormation, and AWS CDK.
Experience with security testing tools (e.g., static and dynamic analysis, penetration testing, vulnerability scanning) and frameworks.
Hands-on experience with CI/CD pipeline security integration, GitOps, and container security (e.g., Docker, Kubernetes, EKS).

Technical Skills :

Proficiency in programming/scripting languages such as Python, Bash, or Go.
Experience with AWS Security Hub, AWS Inspector, AWS Trusted Advisor, and other AWS security services.
Familiarity with security testing frameworks (e.g., OWASP, SANS, NIST) and cloud security best practices.
Experience with integrating security tools into CI/CD pipelines (e.g., Jenkins, GitLab, CircleCI, etc.).
Strong knowledge of common security vulnerabilities (e.g., OWASP Top 10, CVE management) and how to mitigate them in cloud environments.

Certifications (Preferred) :

AWS Certified Security - Specialty.
Certified DevSecOps Professional (CDP) or other related certifications.
CISSP, CISM, or equivalent security certifications are a plus.

Soft Skills:

Excellent problem-solving and analytical skills, with a keen attention to detail.
Strong communication skills, able to present complex security issues to both technical and non-technical audiences.
Ability to work independently and collaboratively in a fast-paced, dynamic environment.
Proactive mindset with a passion for automation, security, and continuous improvement.
Strong documentation skills, with the ability to create clear, concise, and actionable security reports.

Preferred Qualifications:

Experience with container security tools like Aqua Security, Twistlock, or Falco.
Hands-on experience with serverless architectures and security concerns in AWS Lambda, API Gateway, and other serverless services.
Familiarity with cloud-native security architectures and concepts (e.g., Zero Trust, defense in depth).
Experience with compliance frameworks and regulations (e.g., GDPR, HIPAA, SOC 2, PCI DSS).

Employment Type: Full Time, Permanent

Read full job description

Prepare for Senior Engineer roles with real interview advice

People are getting interviews at Photon Interactive through

(based on 57 Photon Interactive interviews)

Job Portal

Company Website

Recruitment Consultant

Referral

Campus Placement

Walkin

58%

14% candidates got the interview through other sources.

High Confidence

What people at Photon Interactive are saying

Senior Engineer salary at Photon Interactive

reported by 5 employees with 4-9 years exp.

₹8.8 L/yr - ₹13 L/yr

32% more than the average Senior Engineer Salary in India

View more details

What Photon Interactive employees are saying about work life

based on 1.7k employees

68%

90%

68%

81%

Flexible timing

Monday to Friday

No travel

Day Shift

View more insights

Compare Photon Interactive with

TCS

3.7

Compare

Infosys

3.7

Compare

Wipro

3.7

Compare

HCLTech

3.6

Compare

Tech Mahindra

3.6

Compare

LTIMindtree

3.9

Compare

Mphasis

3.4

Compare

Hexaware Technologies

3.6

Compare

Persistent Systems

3.5

Compare

Xoriant

4.1

Compare

CitiusTech

3.4

Compare

Iris Software

4.1

Compare

HERE Technologies

3.9

Compare

HTC Global Services

3.6

Compare

BT Business

4.1

Compare

iOPEX Technologies

3.6

Compare

Tietoevry

4.3

Compare

Evalueserve

3.3

Compare

Unisys

3.7

Compare

Infogain

3.6

Compare

Similar Jobs for you

Devsecops Engineer at EQUINITI ICS India Pvt Ltd

Chennai, Bangalore / Bengaluru

3-7 Yrs

₹ 3-7 LPA

Devsecops Engineer at Equiniti India

Chennai, Bangalore / Bengaluru

3-6 Yrs

₹ 5-8 LPA

Cyber Security at NMR Enterprise

Jaipur

3-8 Yrs

₹ 5-10 LPA

Compliance Lead at Ericsson India Global Services Pvt. Ltd.

Noida

8-9 Yrs

₹ 10-11 LPA

Devsecops Engineer at Jewel pro tech

Surat

5-10 Yrs

₹ 2-6 LPA

Senior Analyst at Jifflenow

Gurgaon / Gurugram

4-8 Yrs

₹ 12-17 LPA

Security Operations Center Manager at Stefanini

Noida

5-10 Yrs

₹ 7-12 LPA

Security Engineer 2 at 6Sense

Bangalore / Bengaluru

3-6 Yrs

₹ 5-8 LPA

Devsecops Engineer at MRI Software

Bangalore / Bengaluru

2-7 Yrs

₹ 7-11 LPA

Senior Security Engineer at Barracuda Networks

Bangalore / Bengaluru

4-9 Yrs

₹ 7-11 LPA

Photon Interactive Bangalore / Bengaluru Office Locations

View all

Bangalore / Bengaluru (2)

Bengaluru Office

Photon InfoTech, 2nd Flr, Voyager Building, ITPL, Whitefield Bengaluru
Karnataka 560066

Bengaluru Office

Photon InfoTech, 2nd Flr, Voyager Building, ITPL, Whitefield Bengaluru
Karnataka 560066