Lead Information Security Engineer - Cyber Ops (Cloud Security)

FC Global Services India LLP (First Citizens India), a part of First Citizens BancShares, Inc., a top 20 U.S. financial institution, is a global capability center (GCC) based in Bengaluru. Our India-based teams benefit from the company’s over 125-year legacy of strength and stability. First Citizens India is responsible for delivering value and managing risks for our lines of business. We are particularly proud of our strong, relationship-driven culture and our long-term approach, which are deeply ingrained in our talented workforce. This is evident across all key areas of our operations, including Technology, Enterprise Operations, Finance, Cybersecurity, Risk Management, and Credit Administration. We are seeking talented individuals to join us in our mission of providing solutions fit for our clients’ greatest ambitions.

Job Description:

Value Preposition

Strengthen enterprise cloud and SaaS environments by driving cloud security hardening and securing resources across major cloud providers such as AWS and Azure

This role reduces enterprise risk by proactively identifying misconfigurations, securing workloads across AWS/Azure, and governing identities, data, and network controls. By aligning security strategy with business velocity, the role ensures regulatory compliance, resilience against advanced threats, and faster, safer digital transformation—while optimizing security spend through automation and posture management.

Job Details

Position Title:  Lead Information Security Engineer - Cyber Ops

Career Level:  P3

Job Category: Manager

Role Type: Hybrid

Job Location: Bangalore  

About the Team:

The Cloud Security team is responsible for securing and hardening cloud and SaaS environments across major cloud providers such as AWS and Azure. The team focuses on proactive risk reduction by continuously monitoring cloud and SaaS posture, ensuring secure configurations, strong identity governance, and compliance with enterprise security standards.

Working closely with engineering, infrastructure, and cyber operations teams, the Cloud Security team drives continuous cloud security hardening, detects and remediates misconfigurations, and prevents configuration drift across cloud workloads and SaaS platforms. By embedding security into day-to-day operations, the team enables scalable, resilient, and secure cloud adoption aligned with business objectives.

Impact

As cloud and SaaS usage grows across AWS and Azure, the risk of misconfigurations and compliance gaps increases. This role drives proactive risk reduction by securing cloud and SaaS posture, ensuring secure configurations, strong identity governance, and compliance with enterprise security standards.

This role ensures environments are secure and hardened by default by continuously governing posture. It prevents configuration drift, reduces breach risk, and enables fast, secure cloud adoption aligned with enterprise risk and compliance requirements.

Key Deliverables (Duties and Responsibilities)

• Implement and maintain cloud security hardening standards for AWS and Azure aligned with  NIST, and enterprise security baselines.
• Managing and administering Cloud Security Posture Management (CSPM) and SaaS Security Posture Management (SSPM) tools, including defining, tuning, and maintaining security rules and policies.
• Identify, prioritize, and remediate cloud and SaaS security gaps including misconfigurations, excessive permissions, and identity exposure.
• Ensure continuous compliance and audit readiness by enforcing secure configurations and monitoring configuration drift across cloud resources.
• Collaborate with cyber operations teams to embed security controls into cloud build and run processes.
• Drive automation for posture remediation and security controls to improve response time and operational efficiency.
• Produce actionable security metrics and reports on cloud posture, risk trends, and remediation progress for leadership review.
• Flexible to work on Data Analytics & Automation.

Skills and Qualification (Functional and Technical Skills)

Functional Skills:

• Team Player: Support peers and department management.
• Attention to Detail: Ensure accuracy and thoroughness in all tasks.
• Leadership: Provide guidance and mentorship to junior team members.
• Ability to translate complex technical risks into business-level insights and executive reports.
• Strong communication and collaboration skills, able to work with DevOps, Engineering, SOC, and business stakeholders.
• Continuous learning mindset with strong awareness of emerging threats, cloud trends, and evolving technologies.

Technical/Business Skills:

Preferred Qualifications: 

• Bachelor's Degree and 7 to 10 years’ experience in Cyber security with strong focus on cloud security
• Experience with an Infrastructure as Code (Iac) or Policy as Code (PaC) implementation.
• Strong practical knowledge of cloud-native security services such as:
  • AWS Security Hub, GuardDuty, CloudTrail, KMS
  • Azure Defender, Sentinel, Key Vault, Microsoft Entra ID
  • Google Cloud SCC, IAM, KMS
• Strong understanding of: Encryption, tokenization, KMS/HSM, key rotation policies. Data residency and data classification in cloud environments.
• Terraform Enterprise and Hashicorp Sentinel, Experience securing resources in a major cloud provider. AWS preferred, Azure (not O365/M365), or GCP. Knowledge of security fundamentals.
• Proficiency in scripting (Python, PowerShell, Rego) for automation, reporting, and process enhancement.
• Familiarity with DevSecOps concepts and CI/CD security integrations.
• Experience using Infrastructure-as-Code (e.g., Terraform, CloudFormation, Bicep) for secure deployment and guardrail automation.
• Ability to continuously evaluate risks, remediate control gaps, and manage configuration hygiene across cloud accounts and subscriptions.
• Other preferences: Tools such as reco.ai, Wiz
•  Experience utilizing Git and the knowledge of how the protocol is different than the platform (Github Gitlab)
• Strong understanding of:
  • Cloud networking, segmentation, routing, firewalls, WAF, IDS/IPS, Zero Trust network controls.
  • Identity & Access Management (IAM), RBAC, least-privilege models, and privileged access enforcement applicable to cloud and SaaS
• Strong working knowledge of technology risks, cyber security, computer operating systems, software, containers, and API’s.
• Advanced understanding of security protocols, cryptography, cyber security capabilities, and tools, and their applications to mitigate business risk
• Understanding in applying and implementing core zero trust capabilities (multi-factor/conditional authentication, know your customer, never trust/always verify)
• Understanding of control frameworks, lines of defense, and regulatory requirements and can convert them into technical and non-technical requirements.
• Managing and administering rules in Cloud Security Posture Management tools (like WIZ.io), SaaS Security Posture Management (like Reco.ai)
• Experience evaluating cyber security solutions (RFI/RFP to POC, Pilot, and Production)
• Comfortable working and collaborating in a cross functional organization

Relationships & Collaboration

Partners: Senior leaders and cross-functional teams.

Accessibility Needs

We are committed to providing an inclusive and accessible hiring process. If you require accommodations at any stage (e.g. application, interviews, onboarding) please let us know, and we will work with you to ensure a seamless experience.

Equal Employment Opportunity

FC Global Services India LLP (First Citizens India) is an Equal Employment Opportunity Employer. We are committed to fostering an inclusive and accessible environment and prohibit all forms of discrimination on the basis of gender, religion, caste, disability, sexual orientation, economic status or any other characteristics protected by the law. We strive to foster a safe and respectful environment in which all individuals are treated with respect and dignity. Our EEO policy ensures fairness throughout the employee life cycle.