Security Engineer Job in Anchanto Services

Job Title: Security Engineer

Location: Pune

We are looking for a skilled Security Engineer to join our Cloud Infrastructure & Security team. In this role, you will be responsible for managing and securing all aspects of e-commerce product security and compliance within the AWS cloud environment. The ideal candidate will have a strong background in application and infrastructure security, vulnerability assessment, penetration testing, and a proven track record of participating in security audits.

Key Responsibilities:

• Lead and participate in security audits across multiple environments, including web security, application security, mobile app security, network security, and IT infrastructure security.
• Conduct thorough Vulnerability Assessments and Penetration Testing (VAPT) to identify and mitigate potential risks in applications, AWS resources, configurations, and IT infrastructure.
• Collaborate with cross-functional teams to ensure the security of the e-commerce products, proactively identifying gaps in security and implementing the necessary controls.
• Prepare detailed VAPT reports using predefined templates and assist in finalizing audit reports for management.
• Coordinate with relevant teams to ensure timely resolution of identified security issues.
• Create and maintain security checklists, test cases, and test scenarios to facilitate security audits and penetration tests.
• Implement industry-standard security controls for AWS resources, including vulnerability management and configuration hardening.
• Perform penetration tests on computer systems, networks, and applications, identifying weaknesses and recommending solutions.
• Conduct physical security assessments of systems, servers, and network devices, focusing on firewall maintenance, network security, and other critical infrastructure components.
• Provide regular updates to management regarding security findings, vulnerabilities, and remediation plans.
• Review and offer actionable feedback on information security issues, collaborating with engineering teams to ensure timely fixes.
• Drive improvements in security services, including hardware, software, policies, and procedures.
• Identify areas for enhancing security education and awareness among internal users.
• Stay current with the latest malware and security threats, ensuring that the security strategy is responsive to new challenges.
• Manage and monitor security operations with AWS, XDR/EDR, Microsoft O365 security, and SaaS-based applications.

Desired Skills & Experience:

• 5+ years of experience in AWS application and infrastructure security, Vulnerability Assessment, and Penetration Testing.
• At least 2 security audits completed, with at least one audit performed in the past 12 months.
• Solid experience working in heterogeneous environments and specifically with AWS Cloud. Product-based company experience is a plus.
• Hands-on expertise with VAPT using industry-standard tools such as Qualys, Nessus, WebInspect, Acunetix, Metasploit, Burp Suite Pro, Netsparker, etc.
• Strong experience with Linux administration and security (hardening servers according to industry best practices).
• Familiarity with OWASP security requirements and experience implementing them across applications and infrastructure.
• Proficiency in penetration testing on web and mobile applications, cloud environments, and network infrastructures.
• AWS Security experience is mandatory.
• Experience with XDR/EDR, Microsoft O365 security, and SaaS security is highly desirable.
• Strong analytical skills and the ability to identify vulnerabilities and risks across platforms.
• Certifications: CCNA, CompTIA+, or similar; AWS Security Specialty or similar certifications are preferred.
• Excellent communication skills, with the ability to collaborate effectively with both technical and non-technical teams.
• Strong organizational skills and the ability to prioritize tasks effectively.
• Ability to work with a product-ownership mindset while maintaining security across all systems and applications.

What We Offer:

• Competitive salary and benefits.
• A dynamic and collaborative work environment where innovation and security are top priorities.
• Opportunities for continuous learning and career growth in the field of cloud and cybersecurity.

If you have a passion for security, experience with AWS, and want to be part of a growing team protecting critical infrastructure, apply today!