Cloud IAM Security and Automation Engineer

HDFC Bank

Location: Navi Mumbai, Maharashtra, India
Job type: Full-time

Required skills

Python
AWS
Azure
cloud infrastructure
CloudFormation
compliance
DevOps
firewall
GCP
incident response
infrastructure-as-code
Jenkins
key performance indicators
Lambda
network security
Serverless
Terraform
VPC
PowerShell

About the role

Website: hdfc.bank.in
Job details:

Position Title: Cloud IAM Security and Automation Engineer

Location: Airoli - Onsite

Department: Cloud Network & Security Engineering

Experience Level: 8 - 10+ years

Role Overview

We are looking for a highly skilled engineer who will lead Cloud Network and Security automation and serverless workflows across multi-cloud environments. The role combines deep cloud IAM expertise with advanced automation, Infrastructure-as-Code, AI‑driven workflows, and enterprise-level cloud governance.

Key Responsibilities

1. Multi‑Cloud IAM Management

Manage IAM users, roles, policies, service accounts, and identity governance across AWS, GCP, and Azure.
Implement least privilege, Zero Trust, and continuous IAM posture assessment.
Automate IAM provisioning, access reviews, and remediation workflows.
Implement guardrails using Azure Policies, AWS SCPs, GCP Organization Policies.
Participate in security incident response related to identity and access.

2. Serverless Deployment & Management

Deploy and manage serverless functions using:
AWS Lambda, Step Functions, EventBridge
GCP Cloud Functions, Cloud Run
Azure Functions, Logic Apps
Build event-driven automation pipelines for provisioning, monitoring, and compliance.
Implement automated reporting functions using Python & serverless compute.

3. Cloud Network & Security Automation

Automate provisioning of VPC/VNET, subnets, routing, firewall rules, and security policies.
Implement event-driven security automation and infrastructure remediation scripts.
Integrate network security controls across multi-cloud environments.
Develop automation scripts using Python, Terraform, PowerShell, and related tools.
Build reusable IaC modules to enable consistent, repeatable multi-cloud deployments.
Implement governance and compliance automation using IaC templates.
Build CI/CD pipelines for automated deployment of cloud infrastructure and security.
Automate CFT/Terraform validations and multi‑account rollouts.
Build workflows to automatically generate security, IAM, compliance, and inventory reports.
Develop serverless orchestration for auto-provisioning of cloud resources.
Implement scheduled reporting and data pipelines across cloud environments.
Build automation workflows using multi‑AI agent systems and agentic frameworks.
Implement AI-powered cloud operations, intelligent remediation, and policy generation.
Integrate cloud-hosted LLMs / SLMs for automation, analytics, and security insights.
Deploy and integrate large- and small-language models into cloud-native workflows.
Optimize LLM/SLM usage for automation, reporting, and decision-making systems.
Create, maintain, and deploy CloudFormation Templates (CFTs).
Manage StackSets for multi‑account and multi‑region provisioning.
Automate governance and onboarding for AWS multi-account architectures.

4. AWS Control Tower Management & Customization

Manage AWS Control Tower setup, guardrails, and account provisioning lifecycle.
Implement customizations using Control Tower Customizations (CTC) and StackSets.
Ensure alignment with enterprise cloud governance and compliance standards.

5. Required Skills

Strong hands-on knowledge of IAM across AWS, GCP, and Azure.
Cloud network and security automation expertise.
Proficiency with Python, Terraform, PowerShell, and serverless frameworks.
Experience with CI/CD pipelines and automated deployments. (TFE, GitHubE, Jenkins)
Understanding of AI-driven workflows, LLMs, SLMs, and agentic automation.
Strong experience in Infrastructure-as-Code and cloud governance.

6. Preferred / Nice-to-Have

Certifications:
AWS Security Speciality
Azure Security Engineer
Google Professional Cloud Security Engineer

7. Key Performance Indicators (KPIs)

Reduction in overprivileged accounts.
Automation coverage and reduction in manual process, provisioning and reporting
Compliance posture improvement
Faster access request fulfilment using automation.
Reduction in IAM security incidents.

Collaboration & Support

Work with the DevOps, Cloud Network, and Security Engineering teams to design secure access patterns.
Provide support for IAM-related issues, escalations, or access failures.
Conduct training or best practice sessions for teams consuming cloud services.

Click on Apply to know more.

This page is fully interactive when JavaScript is enabled. Please enable JavaScript to apply or browse related roles.