Job Title: Cloud Security Engineer
Location: Bangalore
Department: Technology
Reports to: Head of Cloud Infra
TookiTaki, the global leader building the Trust Layer for Financial Services, is strengthening its cloud security foundation as we scale our AI-driven AML and fraud-detection platforms across global banks and fintechs. We are looking for a Cloud Security Engineer who blends deep cloud expertise with uncompromising security standards — someone who can design, harden, and defend the cloud environments that power our mission. If secure, resilient, and scalable infrastructure is your playground, welcome home
.Roles & Responsibilities
1. Cloud Security Architecture
- Design and implement secure cloud architectures across AW
- SEnsure systems meet enterprise-grade security, availability, and performance requirements
- .Drive secure-by-default principles across deployments, services, and automation pipelines
.2. Security Hardening & Compliance
- Own and maintain PCI-DSS–aligned cloud security controls
- .Lead infrastructure hardening across compute, data, storage, network, and IAM
- .Implement end-to-end compliance guardrails, auditing, and continuous monitoring
- .Drive patching, vulnerability management, and threat exposure reduction
.3. Threat Detection & Incident Response
- Develop runtime threat detection and alerting frameworks (SIEM/SOAR, IDS, CSPM)
- .Conduct compromise assessments and respond to potential breaches with speed and clarity
- .Act as the primary escalation point for security incidents and lead root cause analysis
- .Continuously enhance detection logic using emerging threats from the AFC ecosystem
.4. Security Automation & DevSecOps
- Integrate security tooling into CI/CD workflows (SAST, SCA, DAST, secrets scanning)
- .Automate policies using IaC (Terraform/CloudFormation) and policy-as-code frameworks
- .Build automated remediation playbooks to reduce manual intervention
.5. Identity, Access & Secrets Management
- Implement and govern IAM standards across cloud environments
- .Build least-privilege, zero-trust access frameworks
- .Maintain secure secrets management via Vault, KMS, or similar tooling
.6. Disaster Recovery & Business Continuity
- Lead DR planning and execution with clear RTO/RPO targets
.
OK
- RsAchieve 99.9% secure and compliant uptime for all cloud infrastructur
- e.Reduce high-risk vulnerabilities by 90% within the first 6 month
- s.Implement full Cloud Security Monitoring & Alerting within 90 day
- s.Shift-left security across CI/CD pipelines with 100% automated check
- s.Reduce mean time to detect (MTTD) and mean time to respond (MTTR) for security incidents by 50
%.
Requiremen
ts
Educat
- ion:Required: Bachelor’s degree in Computer Science, Engineering, Cybersecurity, or equival
- ent.Preferred: Master’s degree in Cybersecurity or Cloud Secur
ity.Experie
- nce:5–9 years in cloud engineering or cloud security ro
- les.Proven hands-on experience securing cloud platforms AWS at sc
- ale.Experience in regulated or compliance-heavy environments (fintech, banking, regtech) prefer
red.Technical Experti
- se: Strong understanding of cloud security frameworks (CIS, NIST, PCI-D
- SS).Expertise with IaC tools: Terraform, CloudFormat
- ion.Hands-on experience with Kubernetes security (E
- KS).Ability to detect, triage and prevent network-level vulnerabilities and misconfigurations in the cloud infrastruct
- ure.Hands-on with container security (Docker, Kubernetes, EKS/G
- KE).Experience with cloud-native security tools (GuardDuty, Security Hub, GCP SCC, Prisma, Wiz, et
- c.).Strong knowledge of monitoring & logging stacks (ELK, Prometheus, Grafa
- na).Proficiency in Python, Go, or Java for security automat
ion.