Posted 26 May, 2026
Cloud Security Engineer
Euclid Innovations
Hyderabad,India,500081
Full Time
Reference: 365_679030_26-00096
Job Description :
Key Responsibilities
- Process and validate exception requests — Review and interpret exception requests, collaborate with requestors to gather business justification and technical details, and triage based on risk and control impact.
- Risk assessment and mitigation — Evaluate risks (impact, likelihood, residual risk), recommend compensating controls, and document findings for deviations related to configuration baselines, network controls, cloud security configurations, and security group changes.
- Approve, reject, or conditionally allow exceptions — Decide on exceptions (full or conditional), define scope/duration, and ensure compensating controls are implemented.
- Operational cloud security reviews —
- Review and validate security group rules to ensure adherence to least privilege principles.
- Support ongoing cloud security hygiene activities such as evaluating IAM permissions and cloud configuration deviations.
- Assist Cloud Engineering/SecOps teams in identifying high-risk rule configurations or misconfigurations.
- WAF Implementation & Support —
- Provide support for onboarding applications to AWS WAF.
- Review and tune custom WAF rules to ensure optimal protection while minimizing false positives.
- Cross-functional collaboration — Work with Cloud/Infrastructure teams, Application owners, DevOps, Compliance/Legal, and Business stakeholders to ensure exception decisions and cloud security reviews consider both technical and operational perspectives.
- Continuous improvement — Identify recurring exception patterns, analyze common SG/WAF/IAM deviations, recommend enhancements to baseline cloud security policies, and refine workflows for improved efficiency and compliance.
Required Skills & Experience
- Proven experience in cloud security, cloud governance, or risk & compliance, with hands-on exposure to AWS or hybrid environments.
- Strong knowledge of cloud security services and tools — including WAF, security groups, network/firewall configurations, IAM, cloud networking, and cloud-native security tools.
- Experience with risk assessment, exception evaluation, and security governance — including assessing technical risks of cloud configuration changes, defining compensating controls, documenting residual risk, and maintaining audit-ready records.
- Excellent stakeholder management and communication capabilities — able to work closely with engineering, dev/ops, security, application, business, and compliance teams, and explain risks or exceptions clearly to technical and non-technical audiences.
- Familiarity with enterprise/cloud governance frameworks such as ISO 27001, SOC 2, or internal corporate security standards.
- Strong ability to manage multiple priorities, maintain process discipline, and follow up on exception remediation, cloud configuration corrections, and lifecycle governance.
Preferred / Nice-to-Have
- Security certifications (CCSP or AWS security certifications) and experience in large enterprise or regulated environments where exception management and cloud security governance are critical.
- Familiarity with GRC or exception-tracking systems, workflow tools, and ticketing systems used for governance and approvals.
- Understanding of hybrid cloud environments (cloud + on-prem) and applying consistent security baselines and rule governance across both.
