JOB PROFILE

Position
Location	Noida
Reporting Mgr. Name	Sushil Kumar
Department	IT Operations
Reporting Mgr. Designation	Infrastructure Head
Offered Grade

Our Purpose

At Niva Bupa, our purpose is “to give every Indian the confidence to access the best healthcare”

Our Values

• Commitment
• Innovation
• Empathy
• Collaboration
• Transparency

Proficiency Level

(Please Tick)

• L1: - HEAD OF FUNCTION/BUSINESS (Sr. Leadership Team)
• L2: - MANAGER OF MANAGER
• L3: - MANAGER
• L4: - INDIVIDUAL CONTRIBUTOR

About Niva Bupa Health Insurance Company

Niva Bupa Health Insurance Company Limited (formerly known as Max Bupa Health Insurance Company Limited) is a joint venture between Fettle Tone LLP (an affiliate of True North Fund VI LLP), a leading Indian private equity firm, and the Bupa Group, a leading international healthcare company with a legacy of providing specialized healthcare services for over 70 years.

Niva Bupa’s growth story has been phenomenal. We are one of the fastest growing Stand Alone Health Insurers in the country with a current employee strength of 9400+ with growth rate of 154% since FY 20 and growing. We are a fully integrated health insurance provider with in-house claims processing; under-writing and servicing. Our goal is to achieve more than 10000 Cr GWP By 2027 & thus requires goal oriented individuals to be a part of this exciting growth journey to achieve it.

Niva Bupa is certified Great Place to Work for the 4th year running and aims become one of the best workplaces in the BFSI industry.

Niva Bupa is an Equal Opportunity Employer committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. At Niva Bupa 12% of our team handling roles are led by women. We welcome specially-abled professionals to join our team.

ESG: Supporting action to protect, restore and regenerate local environments for the benefit of our customers our people, our communities and wider society.

For more Details visit our website- www.nivabupa.com

Job Summary

We are seeking a highly skilled and motivated Cloud Security Engineer to design, implement, and maintain secure infrastructure across our multi-cloud environment. In this role, you will act as the subject matter expert for cloud security, working closely with DevOps, Software Engineering, and IT teams to embed security into our CI/CD pipelines (DevSecOps), secure cloud workloads, and ensure compliance with global regulatory frameworks. The ideal candidate has deep expertise in cloud architectures, automated compliance, and threat mitigation strategies.

Key Roles & Responsibilities:

• Architecture & Design: Design, build, and deploy secure, scalable, and resilient cloud infrastructures across public cloud platforms (AWS, OCI).
• Identity & Access Management (IAM): Design and manage robust cloud IAM policies, ensuring the principle of least privilege is strictly enforced across all environments.
• DevSecOps Integration: Integrate security tools and automated vulnerability scanning (SAST/DAST, SCA) directly into CI/CD pipelines. Implement Infrastructure as Code (IaC) security scanning (CSPM).
• Security Automation & Incident Response: Develop automated scripts and workflows to detect, alert, and remediate cloud security misconfigurations and threats in real-time. Assist the SOC team with cloud-specific incident investigation and forensics.
• Vulnerability & Threat Management: Conduct regular cloud security assessments, threat modeling, and configuration audits. Monitor and manage security alerts from CNAPP, CSPM, and CWPP platforms.
• Compliance & Governance: Ensure cloud infrastructure meets regulatory standards (SOC 2, ISO 27001, PCI-DSS, DPDP). Implement and monitor adherence to CIS Benchmarks.
• Collaboration & Mentorship: Partner with engineering teams to provide security guidance during the software development lifecycle (SDLC). Conduct security awareness training regarding cloud best practices for internal teams.

Key Requirements – Education & Certificates

• Bachelor’s degree – BTech or equivalent

Key Requirements - Experience & Skills

Technical

• Experience: 3–5+ years of dedicated experience in cloud security engineering, cybersecurity, or systems/DevOps engineering with a heavy focus on cloud security.
• Cloud Platform Expertise: Hands-on experience securing at least one major cloud provider (AWS, Azure, GCP), with a strong preference for multi-cloud experience.
• Infrastructure as Code (IaC): Proficiency with IaC tools like Terraform, CloudFormation, or Ansible, and experience securing them.
• Container & Orchestration Security: Strong understanding of securing containerized workloads (Docker) and orchestration platforms (Kubernetes/EKS/AKS/GKE).
• Programming/Scripting: Proficiency in at least one scripting or programming language (e.g., Python, Bash, Go, PowerShell) for security automation.
• Security Tools: Experience with cloud security tools such as AWS Security Hub, Azure Defender, OCI cloud guard, Aqua Security, or open-source equivalents.
• Networking: Deep understanding of cloud networking concepts (VPCs, VNet peering, Firewalls, WAF, Load Balancers, VPNs, and Zero Trust architecture).

Nice to have

• Exposure to ITIL Framework or working in an ITIL based environment
• Experience in hybrid infrastructure transformation or cloud migration projects
• Experience with DevSecOps tools like GitLab CI, GitHub Actions, or Jenkins.
• Familiarity with logging and monitoring tools (e.g., Splunk, Datadog, ELK stack).
• Relevant professional Cloud-Specific certifications: AWS Certified Solution Associate or Oracle Certified Solution Associate

Behavioral

• Ownership and Accountability – Takes full responsibility for cloud security
• Collaboration and Influence – Works effective across internal teams and external vendors.
• Communication – Communicates technical issues clearly to both technical and non-technical audience
• Analytical Thinking – Uses structured thinking and data-driven approach to solve problems, assess risks and make recommendations
• Adaptability – Thrives in dynamic environment.

Key Functional Competencies

Functional competency	Beginner	Intermediate	Expert

NBHI Core Competencies

Behavioral Competency	Beginner	Intermediate	Expert

Targets/ KRA/ KPI (Tentative Business Nos./ Goals, Measure of Success & Weightages)

Goals	Measures of Success	Weightage
Company MOS	Defined as per Company Policy	Defined as per Company Policy

Functional Hierarchy/ Reporting Matrix

Hiring Manager has to inform the TA Team about the Reporting manager’s grade and the candidate’s grade. (Reporting Manager and Prospective New Hire Grade to be clearly mentioned below)