Nagarro

Information Technology And Services

AssociatePrincipalEngineer,CloudSecurity

Remote, LK FULL TIME Remote Friendly

Market Sentiment

HIGH DEMAND

Neural analysis suggests this role is
optimal for not-applicable candidates.

The Brief

“Associate Principal Engineer, Cloud Security at Nagarro. Skills: Cloud Security Architecture, Cyber Risk Management, Threat Modeling, HSM Operations, Cryptography, Compliance Validation, Cloud Security (Azure, AWS, GCP), DevSecOps. Design, implement, and continuously improve the security architecture across enterprise systems, cloud environments, and application ecosystem. Develop and maintain enterprise level security architecture, reference models, and security patterns”

Industry & Context.

Information Technology And Services

What They're Looking For.

Must Have

Cyber Risk Management, Technology Architect - Governance and compliance, Cloud Security, 7 - 12 years of total experience in cyber security, information security, or related fields, 3 - 5 years specifically in security architecture or security engineering roles, Hands on experience with enterprise security tools, cloud security configurations, and security frameworks, Experience working in regulated or compliance driven environments (e.g. , PCI DSS, ISO 27001, GDPR, KSA regulatory requirements), Knowledge of security architecture frameworks (SABSA, TOGAF, NIST CSF, NIST 800 53), Proficiency in threat modeling and secure design methodologies, Hands on experience with HSMs, cryptography, and key management systems, Deep understanding of IAM, network security, cloud security, and API security, Experience with secure SDLC and DevSecOps practices, Knowledge of SIEM, SOAR, endpoint security, and vulnerability management tools, Ability to evaluate software for regulatory compliance and conduct risk assessments

Nice to Have

Security Roadmapping, Code Security Review, Experience with microservices security, container security (Docker, Kubernetes), Familiarity with SAST, DAST, SCA, and IaC security scanning tools, Knowledge of PKI, certificate management systems, and digital signatures, Experience in payments security, tokenization, or financial industry standards, Exposure to OT/IoT security, Scripting/automation skills (Python, PowerShell, Bash), Understanding of Zero Trust and Secure Access Service Edge (SASE) architectures

What You'll Do.

and continuously improve the security architecture across enterprise systems

and application ecosystem

Develop and maintain enterprise level security architecture

and security patterns

Conduct threat modeling for applications

Review high level and low level solution designs for security gaps and recommend mitigations

Define secure coding guidelines and assist development teams in secure implementation

Manage and operate HSMs

Oversee lifecycle operations: key generation

Implement and enforce cryptographic standards

Integrate HSMs into application workflows and enterprise systems

Validate third party and internal software integrations for compliance

Perform architectural risk assessments and oversee secure onboarding of vendors and SaaS platforms

Ensure alignment of solutions with Zero Trust principles and enterprise security policies

Architect secure solutions in cloud environments (Azure

and logging strategies

Evaluate and enhance container and Kubernetes security

Contribute to incident response planning and root cause analysis

Maintain security documentation

and architectural standards

Collaborate closely with DevOps

How You'll Work.

Team & Collaboration

Collaborate closely with DevOps, development, networking, and governance

Communication Scope

documentation and communication skills

Full Job Description

👋🏼We're Nagarro. We are a Digital Product Engineering company that is scaling in a big way! We build products, services, and experiences that inspire, excite, and delight. We work at scale across all devices and digital mediums, and our people exist everywhere in the world (17500+ experts across 39 countries, to be exact). Our work culture is dynamic and non-hierarchical. We're looking for great new colleagues. That's where you come in! Must have Skills : Cyber Risk Management, Technology Architect - Governance and compliance, Cloud Security. Good To Have Skills : Security Roadmapping, Code Security Review We are seeking an experienced Cyber Security Architect to design, implement, and continuously improve the security architecture across our enterprise systems, cloud environments, and application ecosystem. This role requires strong expertise in secure design principles, threat modeling, cryptographic systems, hardware security module (HSM) operations, and evaluating software integrations for security and compliance. Key responsibilities: * Develop and maintain enterprise level security architecture, reference models, and security patterns. * Conduct threat modeling (using STRIDE, DREAD, LINDDUN, or similar methodologies) for applications, APIs, and infrastructure. * Review high level and low level solution designs for security gaps and recommend mitigations. * Define secure coding guidelines and assist development teams in secure implementation Cryptography & Hardware Security Module (HSM). * Manage and operate HSMs (Thales, nCipher, Azure Key Vault Managed HSM, AWS CloudHSM, etc.) * Oversee lifecycle operations: key generation, rotation, storage, distribution, and decommissioning - Implement and enforce cryptographic standards (AES 256, RSA 2048/4096, ECC, TLS 1.2/1.3, etc.). * Integrate HSMs into application workflows and enterprise systems Compliance & Security Validation. * Validate third party and internal software integrations for compliance (ISO 27001, PC

Free ATS check

Applying for this Associate Principal Engineer, Cloud Security role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

SKILL SIGNAL 89 detected · ranked by frequency

Threat Modeling ×5

SIEM ×4

SOAR ×4

SAST ×4

DAST ×4

SCA ×4

PKI ×4

Certificate Management Systems ×4

Cyber Risk Management ×3

Secure Design Principles ×3

Cryptographic Systems ×3

Hardware Security Module (HSM) Operations ×3

Software Integration Evaluation ×3

Secure Coding Guidelines ×3

Key Generation ×3

Key Rotation ×3

Key Storage ×3

Key Distribution ×3

Key Decommissioning ×3

Cryptographic Standards Implementation ×3

HSM Integration ×3

Network Segmentation ×3

Encryption ×3

Logging Strategies ×3

Container Security ×3

Endpoint Security ×3

Vulnerability Management ×3

IaC Security Scanning ×3

Digital Signatures ×3

Tokenization ×3

OT/IoT Security ×3

Scripting ×3

BEHAVIOURAL

Collaboration

Role Details

Experience 7–12 yrs

Level not-applicable

Work Mode Remote

Type FULL TIME

Education Bachelor's or Master's degree in Computer Science, Cyber Sec

Category Engineering

AI-Extracted Insights

Domain Areas

payments-securityfinancial-industry-standards

How to Apply on SmartRecruiters

SmartRecruiters often includes a video screening step — check camera and mic permissions.
Link your GitHub or portfolio directly in the profile section for technical roles.
Applications may be reviewed by AI scoring before reaching a recruiter — use keywords from the job description.

ANONYMOUS · UNFILTERED

What do employees actually say about Nagarro?

Real rants from real employees. Read before you apply.

Read Company Rants →