CareerStation
BM

Security Engineer Lead

Bmw Techworks India
Bangalore7-10 LPA Posted 22 Aug 2025
FULL TIME
Git
Rest Apis
AWS Security Hub
Aws

Job Description

  • Design, develop, and maintain security-focused backend services and APIs in Python.
  • Implement authentication and authorization mechanisms, including IAM policies, roles, and service permissions.
  • Build tools and frameworks to secure customer-built data pipelines, ensuring consistent, enforced security policies across the platform.
  • Integrate with AWS security services such as IAM, KMS, Secrets Manager, CloudTrail, and GuardDuty to provide robust, automated security controls.
  • Develop monitoring and alerting for security events, misconfigurations, and policy violations.
  • Conduct security reviews of platform features, API designs, and infrastructure changes.
  • Collaborate with platform engineers, data engineers, and frontend teams to deliver secure-by-default user experiences.
  • Participate in threat modeling, architecture discussions, sprint planning, and code reviews.
  • Contribute to automation, testing, and CI/CD pipelines to enforce security best practices in deployments.

Requirements:

  • Strong experience with Python development, ideally in a cloud-native, serverless context.
  • Solid understanding of AWS security services and best practices (IAM, KMS, Secrets Manager, CloudTrail, GuardDuty, SCPs, Organizations).
  • Experience designing and consuming REST APIs with secure authentication and authorization.
  • Familiarity with infrastructure as code (e.g. Terraform) for defining and enforcing security policies.
  • Understanding of secure software development practices, including threat modeling, secure code reviews, and vulnerability management.
  • Commitment to writing well-tested, maintainable code, with unit and integration testing.
  • Familiarity with version control (Git) and CI/CD best practices.
  • Strong communication skills and a collaborative, security-first mindset.

Bonus:

  • Experience with AWS Organizations and SCP policy design.
  • Background in data platform security, including protecting data lakes, catalogs, and data pipelines.
  • Knowledge of compliance frameworks (e.g. ISO 27001, SOC 2) and audit readiness.
  • Experience integrating monitoring and security tooling (e.g. AWS Security Hub, SIEMs, custom dashboards).

Required Skills

GitRest ApisAWS Security HubAws
Join WhatsApp Channel