Job Title: Cloud Security Engineer 

Location: Bangalore

Department: Technology

Reports to: Head of Cloud Infra

TookiTaki, the global leader building the Trust Layer for Financial Services, is strengthening its cloud security foundation as we scale our AI-driven AML and fraud-detection platforms across global banks and fintechs. We are looking for a Cloud Security Engineer who blends deep cloud expertise with uncompromising security standards — someone who can design, harden, and defend the cloud environments that power our mission. If secure, resilient, and scalable infrastructure is your playground, welcome home.

 Roles & Responsibilities

1. Cloud Security Architecture:
● Design and implement secure cloud architectures across AWS

● Ensure systems meet enterprise-grade security, availability, and performance requirements.

● Drive secure-by-default principles across deployments, services, and automation pipelines.

2. Security Hardening & Compliance:
● Own and maintain PCI-DSS–aligned cloud security controls.  

● Lead infrastructure hardening across compute, data, storage, network, and IAM.

● Implement end-to-end compliance guardrails, auditing, and continuous monitoring.

● Drive patching, vulnerability management, and threat exposure reduction. 

3. Threat Detection & Incident Response:

● Develop runtime threat detection and alerting frameworks (SIEM/SOAR, IDS, CSPM).

● Conduct compromise assessments and respond to potential breaches with speed and clarity.

● Act as the primary escalation point for security incidents and lead root cause analysis.

● Continuously enhance detection logic using emerging threats from the AFC ecosystem. 

4. Security Automation & DevSecOps: 

● Integrate security tooling into CI/CD workflows (SAST, SCA, DAST, secrets scanning).

● Automate policies using IaC (Terraform/CloudFormation) and policy-as-code frameworks.

● Build automated remediation playbooks to reduce manual intervention. Identity, Access & Secrets Management

● Implement and govern IAM standards across cloud environments.

● Build least-privilege, zero-trust access frameworks.

● Maintain secure secrets management via Vault, KMS, or similar tooling. 

5. Disaster Recovery & Business Continuity

● Lead DR planning and execution with clear RTO/RPO targets. 

OKRs

● Achieve 99.9% secure and compliant uptime for all cloud infrastructure.

● Reduce high-risk vulnerabilities by 90% within the first 6 months.

 ● Implement full Cloud Security Monitoring & Alerting within 90 days.

● Shift-left security across CI/CD pipelines with 100% automated checks.

● Reduce mean time to detect (MTTD) and mean time to respond (MTTR) for security incidents by 50%.

Requirements Education

● Required: Bachelor’s degree in Computer Science, Engineering, Cybersecurity, or equivalent.

● Preferred: Master’s degree in Cybersecurity or Cloud Security.

Experience

● 4–6 years in cloud engineering or cloud security roles.

● Proven hands-on experience securing cloud platforms AWS at scale.

● Experience in regulated or compliance-heavy environments (fintech, banking, regtech) preferred.

Technical Expertise

● Strong understanding of cloud security frameworks (CIS, NIST, PCI-DSS).

● Expertise with IaC tools: Terraform, CloudFormation.

● Hands-on experience with Kubernetes security (EKS)

● Ability to detect, triage and prevent network-level vulnerabilities and misconfigurations in the cloud infrastructure.

● Hands-on with container security (Docker, Kubernetes, EKS/GKE).

● Experience with cloud-native security tools (GuardDuty, Security Hub, GCP SCC, Prisma, Wiz, etc.). 

● Strong knowledge of monitoring & logging stacks (ELK, Prometheus, Grafana). ● Proficiency in Python, Go, or Java for security automation.

Soft Skills

● Exceptional problem-solving and analytical thinking.

● Clear communication — security without theatrics or jargon.

● Ability to operate in a fast, dynamic, and global environment.

● High ownership and accountability.

 Key Competency

● Infrastructure Expertise: Deep understanding of cloud platforms and scalable architecture design.

● Automation and Optimization: Ability to streamline processes and improve cost-efficiency.

● Collaboration: Work effectively with engineering and operational teams.

● Ownership: Take full responsibility for the cloud infrastructure and its performance.

● Adaptability: Thrive in dynamic and rapidly changing environments.

Success Metrics

● Maintain 99.9% uptime across all cloud infrastructure.

● Achieve a 20% reduction in cloud costs within six months.

● Complete automation of CI/CD pipelines, reducing deployment lead times by 50%.

● Resolve critical production incidents within 30 minutes on average.

● Implement a robust monitoring system with minimal false alerts.

Benefits

● Competitive Salary: Aligned with industry standards and experience.

● Professional Development: Access to training in big data, cloud computing, and data integration tools.

● Comprehensive Benefits: Health insurance and flexible working options.

● Growth Opportunities: Career progression within Tookitaki’s rapidly expanding Services Delivery team.