SecOps & Governance Engineer

We are looking for a driven and detail-oriented SecOps & Governance Engineer to secure our cloud infrastructure and operationalise AI governance frameworks. This role sits at the intersection of security operations and emerging AI compliance—an exciting frontier as organisations adopt AI at scale.

You will be responsible for securing cloud environments, operationalising governance controls, and working hands-on with AI risk management platforms such as Credo AI and VerifyWise. You will collaborate with engineering, data science, legal, and compliance teams to ensure our infrastructure and AI systems meet regulatory and enterprise governance standards.

Roles and Responsibilities

Cloud Infrastructure Security

• Design, implement, and maintain security controls across cloud environments (AWS / Azure / GCP)
• Enforce IAM policies, RBAC, least-privilege access, and secrets management across multi-cloud setups
• Conduct regular vulnerability assessments, penetration testing coordination, and security audits
• Monitor and respond to security events via SIEM/SOAR platforms; manage incident response workflows
• Ensure network security posture: VPC configurations, firewalls, WAFs, DDoS protection, and TLS management

Governance, Risk & Compliance (GRC)

• Own and operationalise cloud governance policies aligned with ISO 27001, SOC 2, and CIS Benchmarks
• Manage policy-as-code initiatives using tools like Open Policy Agent (OPA) or HashiCorp Sentinel
• Maintain compliance dashboards and evidence artefacts for internal and external audits
• Conduct risk assessments for infrastructure changes and new technology deployments
• ISO 42001 (AI Management Systems): Lead or support implementation of AI governance frameworks aligned with this standard (added advantage)

AI Governance & Risk Management Platforms

• Work with Credo AI to define, track, and report on AI model risk policies, model cards, and compliance requirements
• Utilise VerifyWise or similar platforms to assess, document, and manage AI system risks end-to-end
• Collaborate with ML/data science teams to integrate governance checkpoints into the AI/ML model lifecycle
• Monitor AI systems for bias, explainability gaps, data drift, and regulatory non-compliance
• Develop internal AI governance playbooks, controls libraries, and risk registers

DevSecOps & Automation ( Optional) 

• Embed security into CI/CD pipelines (SAST, DAST, container scanning, IaC security scanning)
• Manage infrastructure-as-code (Terraform, Pulumi, CloudFormation) with security best practices
• Automate compliance checks and remediation using scripting (Python, Bash) and cloud-native tools
• Implement and manage CSPM (Cloud Security Posture Management) tools

Cross-Functional Collaboration

• Partner with Legal, Privacy, and Risk teams on data governance, data residency, and regulatory obligations
• Provide security and governance guidance to product and engineering squads
• Prepare executive-level reports on security posture, AI governance metrics, and compliance status

Key Skill

 Public Cloud Skills (Required)

• 3+ years of hands-on experience operating and securing workloads on one or more public cloud platforms: AWS, Google Cloud Platform (GCP), or Microsoft Azure
• AWS: Deep familiarity with core services — EC2, S3, RDS, Lambda, VPC, IAM, CloudTrail, GuardDuty, Security Hub, AWS Config, and KMS
• GCP: Experience with Compute Engine, GKE, Cloud IAM, Cloud Armor, Security Command Center, VPC Service Controls, and Assured Workloads
• Azure: Knowledge of Azure AD, Defender for Cloud, Policy, Sentinel, Key Vault, and Azure Monitor (advantageous)
• Multi-cloud networking: cross-cloud connectivity, transit gateways, shared VPCs, private endpoints, and DNS architecture
• Strong understanding of cloud-native security primitives: SCPs, organisation policies, resource hierarchy, and cloud landing zone design
• Cloud cost governance: tagging strategies, budget alerts, and rightsizing as they interact with compliance and security guardrails

Technical Skills

• Proficiency with AI governance platforms: Credo AI, VerifyWise, or comparable tools
• Experience with IAM, SIEM, CSPM, and vulnerability management tools
• Hands-on experience with one or more enterprise security platforms: Microsoft Defender for Cloud, CrowdStrike Falcon, or Palo Alto Prisma Cloud — covering threat detection, endpoint protection, and cloud security posture management
• Infrastructure-as-Code (Terraform, Pulumi, or CloudFormation) for cloud resource provisioning and security automation
• Scripting proficiency: Python and/or Bash for automation and compliance tooling
• Working knowledge of container security: Kubernetes (EKS / GKE / AKS), Docker, and image scanning tools (Trivy, Snyk)
• Understanding of DevSecOps principles and CI/CD security integration.

Experience:

5 - 10 years

Education Qualification:

B.E/B. Tech/MCA

Work Location

Hyderabad