Job description
Hello Visionary! We know that the only way a business thrives is when our people grow. That’s why we always put our people first. Our global, complementary team is here to support you, challenge you, and help you grow in new ways. Who knows where our shared journey will take you? About This Role This role is responsible for ensuring end-to-end security of products and solutions by embedding security into the Secure Software Development Lifecycle (SDLC). You will work closely with development, cloud, and business teams to proactively identify risks, implement robust security controls, and ensure compliance with industry standards. You will play a crucial role in strengthening application security, cloud security (AWS), and vulnerability management practices while operating in an Agile, cloud‑native, and SaaS-driven environment. You’ll Make a Difference By: Ensuring product and solution security by embedding security protocols across the secure SDLC. Reviewing and securing AWS cloud environments, identifying misconfigurations, and enforcing procedures across IAM, GuardDuty, Security Hub, WAF, and KMS. Configuring, optimizing, and supporting SAST and DAST tools, including API security testing. Managing the complete vulnerability lifecycle — identification, risk assessment, prioritization, remediation tracking, and validation. Acting as the main point of contact for penetration testing engagements, validating findings, and ensuring timely remediation. Supporting ISO 27001 and SOC 2 compliance initiatives, including control implementation and audit preparedness. Working closely with business partners to understand requirements and translate them into secure technical solutions. Clearly communicating security findings, risks, and remediation strategies to both technical and non-technical partners. Providing security training, guidance, and awareness to development teams and other groups. Encouraging positive relationships with business units to ensure security controls align with business objectives. You’ll Win Us Over By: Bringing 5–8 years of experience in Product Security, Application Security, or Cloud Security. Strong hands-on expertise in application security and AWS cloud security. Practical experience with SAST, DAST, vulnerability management, and API security testing. Solid grasp of OWASP Top 10, common charge vectors, and secure coding principles. Ability to read and understand code (Golang and/or Angular preferred). Experience in scripting using Python and/or Bash to support security automation and analysis. Working knowledge of penetration testing concepts and validating security findings. Experience working with Agile development teams and cloud-native/SaaS environments. Exposure to ISO 27001 and SOC 2 compliance and audit processes. Certifications (One Required): AWS Certified Security – Specialty Certified Cloud Security Professional (CCSP) Certified Secure Software Lifecycle Professional (CSSLP) What You’ll Gain: Opportunity to work with global product and engineering teams on secure, scalable solutions. Exposure to cloud-first, security-by-design product environments. Hands-on involvement in security architecture, testing, and compliance initiatives. A collaborative culture that values innovation, learning, and continuous improvement. A transparent, inclusive, and empowering work environment that supports long-term career growth. Create a better #TomorrowWithUs! This role is an individual contributor position, based in Pune. You may collaborate with teams across various locations in India and globally. In return, you’ll work with teams shaping the future of secure digital products and solutions. At Siemens, we are a collection of over 312,000 minds building the future—one day at a time—worldwide. We are dedicated to equality and welcome applications that reflect the diversity of the communities we serve. All employment decisions at Siemens are based on qualifications, merit, and business need. Bring your curiosity and imagination—and help us shape tomorrow. 🔗 Find out more about Siemens careers: https://www.siemens.com/careers
This job post has been translated by AI and may contain minor differences or errors.
