Infra & Cloud Security Specialist Function: Infrastructure Engineering Location: Bangalore, India Experience: 7–9 Years Role Summary Hands-on Infra & Cloud Security Specialist is responsible for identifying, solutioning, and remediating vulnerabilities across on-prem and Azure-centric environments. This role is execution-heavy. You will work directly on Linux, Windows, AKS, and container security issues and take ownership from finding to closure, while following defined security standards and automation practices. When vulnerabilities show up, you don’t just flag them. You fix them. Key Responsibilities • Perform hands-on vulnerability remediation across cloud, on-prem, and hybrid environments. • Use Wiz to triage vulnerabilities, analyze root causes, define remediation actions, and drive closure. • Remediate vulnerabilities across: o Linux and Windows OS (patching, hardening, configuration fixes) o Azure Kubernetes Service (AKS) clusters o Container images and registries • Implement and adhere to defined security baselines for Azure infrastructure and platform services. • Fix misconfigurations across ACS / cloud security posture controls, identity, networking, and storage. • Work closely with DevOps, platform, and application teams to remediate security issues in build and deployment pipelines. • Execute and support automation for: o OS and image hardening o Patch management o Configuration drift and compliance checks • Support IAM, RBAC, and privileged access controls implementation and reviews. • Participate in audits, security assessments, and vulnerability review discussions. • Create and maintain remediation documentation, runbooks, and implementation guides. • Support engineers with practical guidance on OS, cloud, and container security remediation. Technical Competencies • Hands-on experience using Wiz for vulnerability identification and remediation tracking. • Strong expertise in Linux and Windows OS security, including: o OS hardening o Patch remediation o Configuration and package-level fixes • Practical experience remediating vulnerabilities in AKS clusters, including nodes and workloads. • Good understanding of container security, including: o Image vulnerabilities o Base image hardening o Registry and runtime considerations • Working knowledge of Azure security services, identity, networking, and storage security. • Experience using Terraform and Ansible for remediation or security automation. • Understanding of cloud security posture management, IAM concepts, and least-privilege models. Behavioral Competencies • Strong ownership mindset and execution focus. • Solution-oriented approach to security findings. • Clear communicator with engineers and platform teams. • Comfortable explaining remediation actions and trade-offs. • Values clean documentation and repeatable processes. Experience & Qualifications • 7–9 years in infrastructure, cloud, or platform security roles. • Mandatory hands-on experience securing both Linux and Windows in enterprise environments. • Hands-on experience remediating vulnerabilities in AKS clusters, container images, and OS platforms. • Understanding of golden image patching and hardening concepts. • Proven experience closing vulnerabilities, not just reporting them. • Kubernetes and container security experience is required. • AZ-500 preferred; CISSP or CCSP is a plus.
