Cloud Security Engineer

Bengaluru | Full-time

Apply by: No close date
Apply

Who are we?

Whatfix is a leading global B2B SaaS organization and the largest pure-play enterprise digital adoption platform solution provider. 

Utilizing GenAI technology, Whatfix enhances all stages of software deployment with application simulation, product analytics, and digital adoption, driving business outcomes such as increased revenue win rates, cost reduction, risk compliance, enhanced productivity, and improved user experience. 

We have seven offices in the US, India, UK, Germany, Singapore, and Australia, supporting  700+ global customers, including 80+ Fortune 500 companies. Whatfix has raised $140 million to date and is backed by marquee investors, including Softbank, PeakXV, Dragoneer, and Cisco Investments. 

  • With over 45% YoY sustainable annual recurring revenue (ARR) growth, Whatfix is among the “Top 50 Indian Software Companies” as per G2 Best Software Awards. 

  • Recognized as a “Leader” in the digital adoption platforms (DAP) category for the past 4+ years by leading analyst firms like Gartner, Forrester, IDC, and Everest Group.

  • The sole vendor named as Customers’ Choice: 2024 Gartner® Voice of the Customer for Digital Adoption Platform Report.  We also boast a star rating of 4.6 on G2 Crowd 4.5 on Gartner Peer Insights and a high CSAT of 99.8%

  • Highest-Ranking DAP on 2023 Deloitte Technology Fast 500™ North America for Third Consecutive Year

  • Won the Silver for Stevie's Employer of the Year 2023 – Computer Software category and also recognized as Great Place to Work 2022-2023 

  • Only DAP to be among the top 35% companies worldwide in sustainability excellence with EcoVadis Bronze Medal

 

Position Summary:

Your role will be working on leading the security strategy governing the application and cloud-based platform infrastructure. You will work with other infrastructure, DevOps and application engineers to understand product and business needs, provide expertise around Secure application and cloud service development, as well as define and own clear guardrails, alerts, and Security as Code (SaC) deployments to provide 24/7 protection from malicious traffic, vulnerabilities and other attack vectors. 

 Responsibilities:

  • Support cross-team security initiatives of internal teams and consult with teams on security in design

  • Engineer and tune the cloud security solutions including but not limited to enrollments, monitoring, alerting and maintaining defined security posture.

  • Designing a secure application-release automation process to make security an integral part of the CI/CD pipelines and Integrate security tools for issue tracking with Jira.

  • Identifying security tools and leading operationalization of solutions from POC to Production.

  • Implementing automation to investigation and response workflows for Automated Incident Response.

  • Reduce time-to-detect and time-to-remediate by driving the automation of applied threat intelligence and sensor enrichment.

  • Work with Architecture teams to Implement a identity management ecosystem holistically and create a secure infrastructure, Enforce compliance with IAM principals including least privilege access, password management, Audit logging, RBAC, deploy and maintain password management, user account lifecycle, certificate management and system authentication solutions

  • improve Web App Firewalls (WAF), Ensure early Identification of intrusion & attacks and implement countermeasures

  • Implement security measures that monitor and protect sensitive data and systems from infiltration and cyber-attacks.

  • Work with cloud providers to obtain understanding of security controls, ensure controls are leveraged

  • Develop innovative security controls to protect assets across a complex environment

  • Implement security orchestration and automation in support of security operations

  • Stay abreast of emerging technologies and threats proactively assess and evaluate the adoption thereof into the organization

  • Act as a first-responder for security-related incidents.

  • Strong commitment to standardization and documentation

Skills and Experience Required:

  • At least 5+ years of total experience in Cyber security including Incident response, Engineering, Cloud architectures, Tuning etc

  • At least 3+ years of experience and hands-on expertise in tuning of network sensors like SIEM, DDOS, WAF, Cloud Security and/or Opensource development.

  • Must have proficiency with scripting languages (Batch scripting, Python and Ansible)

  • Must have experience in Monitoring and improving DevSecOps tools and processes, automate routine tasks, improve system reliability and should be from the strong information security background.

  • Must have hand on experience with Linux/Unix systems.

  • Experience in developing and reviewing hardening guidelines for various Linux and Unix Operating systems in line with the industry best practices.

  • Understanding of security frameworks and standards like OWASP & NIST, Solid understanding of security protocols, cryptography, authentication, authorization

  • Good understanding of Linux, TCP/IP protocol stack and networking fundamentals, security principles at all layers of the OSI stack

  • Should have broad technical foundation and be able to understand network, operating system, database and application development design and support as necessary to be able to analyse issues and recommend solutions for the detection, remediation and prevention of security vulnerabilities.

  • Experience in designing and reviewing security controls for Public cloud based deployments 

  • Experience of implementing any cloud based SIEM Tools will be an advantage.

  • Experience with PKI, SSL, SSH, HHTPS etc

  • Software development domain and principles, including design patterns, code structure, programming languages, continuous integration (Bitbucket), continuous deployment (Jenkins), and deployment orchestration (Puppet, Ansible, or equivalent)

Qualifications 

  • Bachelor degree in a technical field such as computer science, computer engineering

  • Minimum experience: 4 yrs. in technology field out of which 3-5yrs in Devsecops 

    Note:

    • At Whatfix, we thrive on the power of collaboration, innovation, and human connection. We strongly believe that working together in our office (five days a week)  fosters open communication, builds a sense of community, and fuels innovation. This ensures open communication, strengthens our sense of community, and enables us to achieve our collective goals effectively.

    • At Whatfix, we deeply value collaboration, innovation, and human connection. We believe that being together in the office five days a week fosters open communication, strengthens our sense of community, and accelerates innovation—ultimately helping us achieve our goals more effectively.

    • At the same time, we recognize the importance of flexibility in balancing personal and professional priorities. To support this, we offer the option to work from home up to two days per month.

    • In any situation that requires additional flexibility, we’re open to considering exceptions on a case-by-case basis to ensure you’re supported in managing both work and life seamlessly.

    • We strive to live and breathe our Cultural Principles and encourage employees to demonstrate some of these core values - Customer First; Empathy; Transparency; Fail Fast and scale Fast; No Hierarchies for Communication; Deep Dive and innovate; Trust is the foundation; and Do it as you own it.

We are an equal opportunity employer and value diverse people because of and not in spite of the differences. We do not discriminate on the basis of race, religion, color, national origin, ethnicity, gender, sexual orientation, age, marital status, veteran status, or disability status