Sr. Security Engineer - Cloud Security

📋 Description

• • Cyara is seeking a highly skilled and experienced Senior Cloud Security Engineer to join our dynamic team in Hyderabad. As a global leader in AI-powered customer experience assurance, Cyara is at the forefront of eradicating bad customer experiences. We provide a unified platform for continuous testing and monitoring across voice, digital, messaging, and conversational AI channels, empowering leading brands to optimize millions of customer journeys annually. In an era where enterprises are rapidly deploying agentic AI systems, Cyara offers the critical assurance layer needed to transition from pilot phases to production-ready deployments. We achieve this by testing AI agents with AI agents, identifying issues that traditional scripts miss. Our mission is to ensure every customer touchpoint is flawless, every AI interaction solves problems, and every customer is delighted, delivering secure, friction-free, high-quality CX at scale.
• • In this pivotal role, you will be instrumental in designing, implementing, and continuously optimizing robust security controls across our cloud infrastructure. You will collaborate closely with our infrastructure, product, and engineering teams to guarantee that our workloads, identities, data, and networks are securely architected, meticulously monitored, and diligently maintained. This involves a proactive approach to building scalable security automation, rigorously enforcing policy-as-code principles, significantly strengthening our identity and access management practices, and fostering a culture of secure-by-default cloud operations.
• • Your responsibilities will extend to developing and maintaining security architectures that align with industry best practices and regulatory requirements. You will be a key player in threat modeling, vulnerability management, and incident response planning within our cloud environments. A significant part of your role will involve leveraging automation to streamline security operations, reduce manual effort, and enhance the speed and accuracy of security assessments. This includes developing and deploying security tools and scripts to automate compliance checks, configuration management, and security monitoring.
• • You will play a crucial role in defining and implementing security policies and standards for our cloud platforms, ensuring adherence across all development and operational teams. This involves translating security requirements into actionable technical controls and working with engineering teams to integrate these controls into their workflows. Furthermore, you will be responsible for monitoring cloud environments for security threats and vulnerabilities, conducting regular security audits, and performing forensic analysis in the event of a security incident.
• • The ideal candidate will possess a deep understanding of cloud security principles, common attack vectors, and mitigation strategies. Experience with major cloud providers (AWS, Azure, GCP) and their native security services is essential. You will also be expected to stay abreast of emerging security threats and technologies, continuously evaluating and recommending improvements to our security posture. This role offers a unique opportunity to shape the security landscape of a rapidly growing, innovative company and to make a significant impact on our ability to deliver secure and reliable CX solutions to our global clientele.
• • Key responsibilities include:
• • Designing, implementing, and managing security solutions for cloud environments (AWS, Azure, GCP).
• • Developing and maintaining security automation, including infrastructure as code (IaC) and policy as code (PaC).
• • Strengthening identity and access management (IAM) controls and best practices.
• • Implementing and managing security monitoring, logging, and alerting systems.
• • Conducting regular security assessments, vulnerability scans, and penetration tests.
• • Developing and enforcing security policies, standards, and procedures.
• • Responding to security incidents, performing forensic analysis, and implementing remediation steps.
• • Collaborating with engineering and product teams to ensure security is integrated into the software development lifecycle (SDLC).
• • Staying current with cloud security trends, threats, and best practices.
• • Contributing to threat modeling and risk assessment activities.
• • Ensuring compliance with relevant security regulations and standards.
• • Providing security guidance and training to other teams.
• • Evaluating and recommending new security technologies and tools.
• • Building and maintaining secure CI/CD pipelines.
• • Managing security configurations for cloud services such as compute, storage, networking, and databases.
• • Implementing and managing security for containerized environments (e.g., Kubernetes).
• • Developing and maintaining security documentation and runbooks.
• • Participating in on-call rotation for security incident response.
• • Driving a security-first mindset across the organization.
• • Proactively identifying and mitigating security risks before they impact the business.
• • Contributing to the continuous improvement of our security operations capabilities.
• • Ensuring the confidentiality, integrity, and availability of Cyara's cloud assets and customer data.
• • Championing security best practices and fostering a culture of security awareness.
• • Working with cross-functional teams to define and implement security requirements for new products and features.
• • Automating security checks and compliance validation within development workflows.
• • Managing and securing secrets and credentials across cloud environments.
• • Implementing and managing security for serverless architectures.
• • Developing and maintaining security dashboards and reporting mechanisms.
• • Participating in security architecture reviews and providing expert security advice.
• • Ensuring robust disaster recovery and business continuity planning from a security perspective.
• • Continuously evaluating the effectiveness of existing security controls and making necessary adjustments.
• • Leading security initiatives and projects from inception to completion.
• • Building strong relationships with internal stakeholders to ensure alignment on security objectives.
• • Contributing to the development and maintenance of our Security Operations Center (SOC) capabilities.
• • Implementing and managing security for data protection and privacy controls.
• • Ensuring secure configuration management across all cloud resources.
• • Proactively identifying and addressing potential security vulnerabilities in third-party integrations.
• • Developing and executing security testing strategies for cloud-native applications.
• • Contributing to the overall cybersecurity strategy and roadmap of the company.
• • Mentoring junior security engineers and sharing knowledge across the team.
• • Driving innovation in cloud security practices and solutions.
• • Ensuring adherence to Cyara's values of Delivering Excellence, Innovating Boldly, Integrity First, and Embracing Curiosity in all security-related activities.
• • Supporting Cyara's commitment to Diversity, Equity, Inclusion, and Belonging by ensuring security practices are fair and equitable.
• • Playing a key role in maintaining the trust and confidence of our customers by safeguarding their data and ensuring the security of our platform.
• • Contributing to a secure and resilient cloud infrastructure that supports Cyara's rapid growth and global operations.
• • Empowering development teams with the tools and knowledge to build secure applications from the ground up.
• • Ensuring that our security posture is continuously evaluated and improved to meet evolving threats and business needs.
• • Being a trusted advisor on all matters related to cloud security within the organization.
• • Driving the adoption of security best practices and automation across the engineering organization.
• • Contributing to a culture where security is seen as an enabler of innovation and business success.
• • Ensuring that our cloud security practices are aligned with industry standards and regulatory requirements.
• • Proactively identifying and mitigating risks associated with new technologies and services adopted by Cyara.
• • Developing and implementing effective incident response playbooks for various cloud security scenarios.
• • Collaborating with legal and compliance teams to ensure adherence to data privacy regulations.
• • Championing the use of security automation to improve efficiency and reduce human error.
• • Building and maintaining strong relationships with cloud service providers and security vendors.
• • Ensuring the security of our CI/CD pipelines and the artifacts produced within them.
• • Developing and implementing strategies for securing containerized workloads and orchestration platforms.
• • Contributing to the development and execution of a comprehensive cloud security strategy.
• • Providing technical leadership and guidance on cloud security best practices.
• • Ensuring that security is a core consideration throughout the entire software development lifecycle.
• • Driving the adoption of DevSecOps principles and practices within the organization.
• • Continuously monitoring the threat landscape and adapting our security controls accordingly.
• • Developing and implementing effective security awareness training programs for all employees.
• • Ensuring the secure configuration and management of all cloud infrastructure components.
• • Leading security reviews and assessments of new cloud services and architectures.
• • Contributing to the development and maintenance of security policies and procedures.
• • Being a subject matter expert in cloud security and providing guidance to teams across the organization.
• • Driving the implementation of security best practices for data protection and privacy.
• • Ensuring the security of our CI/CD pipelines and the integrity of our software supply chain.
• • Developing and implementing strategies for securing containerized applications and Kubernetes clusters.
• • Contributing to the overall cybersecurity strategy and roadmap of the company.
• • Providing technical leadership and guidance on cloud security best practices.
• • Ensuring that security is a core consideration throughout the entire software development lifecycle.
• • Driving the adoption of DevSecOps principles and practices within the organization.
• • Continuously monitoring the threat landscape and adapting our security controls accordingly.
• • Developing and implementing effective security awareness training programs for all employees.
• • Ensuring the secure configuration and management of all cloud infrastructure components.
• • Leading security reviews and assessments of new cloud services and architectures.
• • Contributing to the development and maintenance of security policies and procedures.
• • Being a subject matter expert in cloud security and providing guidance to teams across the organization.
• • Driving the implementation of security best practices for data protection and privacy.
• • Ensuring the security of our CI/CD pipelines and the integrity of our software supply chain.
• • Developing and implementing strategies for securing containerized applications and Kubernetes clusters.
• • Contributing to the overall cybersecurity strategy and roadmap of the company.
• • Providing technical leadership and guidance on cloud security best practices.
• • Ensuring that security is a core consideration throughout the entire software development lifecycle.
• • Driving the adoption of DevSecOps principles and practices within the organization.
• • Continuously monitoring the threat landscape and adapting our security controls accordingly.
• • Developing and implementing effective security awareness training programs for all employees.
• • Ensuring the secure configuration and management of all cloud infrastructure components.
• • Leading security reviews and assessments of new cloud services and architectures.
• • Contributing to the development and maintenance of security policies and procedures.
• • Being a subject matter expert in cloud security and providing guidance to teams across the organization.
• • Driving the implementation of security best practices for data protection and privacy.
• • Ensuring the security of our CI/CD pipelines and the integrity of our software supply chain.
• • Developing and implementing strategies for securing containerized applications and Kubernetes clusters.