Job Description

Skills
Skill


AWS
GITHUB
PYTHON
REST API
AWS GLUE
IAM
LAMBDA
ANGULAR
REACT
DATA ENGINEER
ETL
CI/CD PIPELINE
Minimum Qualification


No data available

Role

Expert Cloud Security Engineer - Cloud Data Hub

Visit our website

bmwtechworks.in

to know more.

Location

Chennai

Experience

7 to 14 years

Number of openings

1

What awaits you/ Job Profile

We're hiring an Expert Software Engineer - Security to help build and secure the Cloud Data Hub (CDH)--our AWS-based data platform for managing petabytes of enterprise data.


In this role, you'll focus on designing and implementing security features, best practices, and tooling that protect our platform, data, and users. You'll collaborate across teams to ensure the platform is secure by design, while enabling self-service data workflows for customers without compromising on security or compliance.


Responsibilities:

Design, develop, and maintain security-focused backend services and APIs in Python. Implement authentication and authorization mechanisms, including IAM policies, roles, and service permissions. Build tools and frameworks to secure customer-built data pipelines, ensuring consistent, enforced security policies across the platform. Integrate with AWS security services such as IAM, KMS, Secrets Manager, CloudTrail, and GuardDuty to provide robust, automated security controls. Develop monitoring and alerting for security events, misconfigurations, and policy violations. Conduct security reviews of platform features, API designs, and infrastructure changes. Collaborate with platform engineers, data engineers, and frontend teams to deliver secure-by-default user experiences. Participate in threat modeling, architecture discussions, sprint planning, and code reviews. Contribute to automation, testing, and CI/CD pipelines to enforce security best practices in deployments.

What should you bring along

Strong experience with Python development, ideally in a cloud-native, serverless context. Solid understanding of AWS security services and best practices (IAM, KMS, Secrets Manager, CloudTrail, GuardDuty, SCPs, Organizations). Experience designing and consuming REST APIs with secure authentication and authorization. Familiarity with infrastructure as code (e.g. Terraform) for defining and enforcing security policies. Understanding of secure software development practices, including threat modeling, secure code reviews, and vulnerability management. Commitment to writing well-tested, maintainable code, with unit and integration testing. Familiarity with version control (Git) and CI/CD best practices. Strong communication skills and a collaborative, security-first mindset. Detail-oriented mindset. Strong problem-solving skills. Work often in CET timezone. Outstanding Analytical and Communication Skills MUST

Must have technical skills

Python, ideally in a cloud-native, serverless context AWS security services and best practices (IAM, KMS, Secrets Manager, CloudTrail, GuardDuty, SCPs, Organizations) Experience with AWS Organizations and SCP policy design. Background in data platform security, including protecting data lakes, catalogs, and data pipelines. Knowledge of compliance frameworks (e.g. ISO 27001, SOC 2) and audit readiness. Experience integrating monitoring and security tooling (e.g. AWS Security Hub, SIEMs, custom dashboards).

Good to have technical skills