Senior Tech Specialist

Job Description:

Role: Senior Tech Specialist

Exp: 10+ Years

Location: Bangalore

Employment Type: C2H (6months - 1 Year)

NP: Immediate

Package: 15LPA

Role Summary

We are looking for a Senior Azure Infrastructure & Cloud Security SME who owns security across on-prem, hybrid, and Azure-centric environments . This is a highly hands-on role focused on end-to-end vulnerability remediation , not just identification or advisory.

You will work deeply across Linux, Windows, AKS, container platforms, and Azure services , driving vulnerabilities from discovery to closure. You will also define security baselines, automate remediation at scale, and act as the go-to expert for cloud and infrastructure security.

Primary Skills

• Azure Platform Administration (IaaS & PaaS)
• Azure Security & Identity (IAM, RBAC, PIM)
• Azure Data Platform (DaaS), Azure Database Services
• Azure Analytics Services, Azure Data Catalog
• Azure Integration Services
• Azure Event Hub
• Azure Migration Services
• Azure Developer Tools
• Azure Kusto (Azure Data Explorer)

Key Responsibilities

Vulnerability Management & Remediation

• Lead hands-on remediation of vulnerabilities across cloud, on-prem, and hybrid environments .
• Own vulnerability lifecycle using Wiz , including triage, root-cause analysis, remediation planning, implementation, validation, and closure tracking.
• Actively remediate vulnerabilities across:
• Linux and Windows OS (patching, hardening, configuration fixes)
• Azure Kubernetes Service (AKS) clusters
• Container images and registries

Cloud & Infrastructure Security

• Design, implement, and enforce security baselines for Azure infrastructure, compute, and platform services.
• Drive remediation for cloud security posture misconfigurations , including:
• Azure networking
• Storage security
• Identity and access controls
• Define and maintain IAM, RBAC, and privileged access models following least-privilege principles.

Automation & Engineering

• Design and automate:
• OS and golden image hardening
• Patch management workflows
• Configuration drift detection and compliance enforcement
• Use Terraform, Ansible, and automation frameworks to implement scalable remediation solutions.
• Embed security controls into CI/CD and DevOps workflows .

Collaboration & Leadership

• Partner with DevOps, platform, and application teams to integrate security into build and deployment pipelines.
• Act as the primary security SME during audits, risk assessments, and customer security reviews.
• Create clear remediation documentation, runbooks, and execution-ready guidance .
• Mentor engineers on cloud security, OS hardening, container security, and vulnerability remediation best practices .

Technical Competencies

• Strong hands-on experience with Wiz for cloud and infrastructure vulnerability management.
• Deep expertise in Linux and Windows OS security , including:
• OS hardening
• Patch remediation
• Kernel, package, and configuration-level fixes
• Proven experience securing and remediating vulnerabilities in AKS clusters , including:
• Node security
• Cluster configuration
• Workload-level security
• Strong understanding of container security , including:
• Image vulnerability remediation
• Base image hardening
• Registry and runtime security
• Solid knowledge of Azure security services , identity, networking, and storage security.
• Experience with Terraform, Ansible , and automation-driven remediation.
• Strong understanding of cloud security posture management (CSPM) and IAM governance.

Behavioral Competencies

• Takes full ownership and drives issues to closure.
• Solution-oriented mindsetgoes beyond findings to fixes.
• Strong communication with engineers, architects, and stakeholders.
• Comfortable leading remediation discussions with customers and internal teams.
• Strong documentation mindsetcreates clarity and reusable knowledge.

Experience & Qualifications

• 1012 years of experience in infrastructure, cloud, or platform security roles.
• Mandatory hands-on experience securing both Linux and Windows in enterprise environments.
• Hands-on experience remediating vulnerabilities in AKS clusters and container images .
• Strong understanding of golden image creation and patching strategies .
• Proven track record of actually fixing vulnerabilities , not just reporting them.
• Strong experience with Kubernetes and containerized workloads .
• Certifications (Preferred): AZ-500, CISSP, CCSP.