Cybersecurity Engineer

Customers trust the Alation Data Intelligence Platform for self-service analytics, cloud transformation, data governance, and AI-ready data, fostering data-driven innovation at scale. With more than $340M in funding – valued at over $1.7 billion and nearly 600 customers, including 40% of the Fortune 100 — Alation helps organizations realize value from data and AI initiatives.

Alation has been recognized in 2024 as one of Inc. Magazine's Best Workplaces for the fifth time, a testament to our commitment to creating an inclusive, innovative, and collaborative environment. 

Collaboration is at the forefront of everything we do. We strive to bring diverse perspectives together and empower each team member to contribute their unique strengths to live out our values each day. These are: Move the Ball, Build for the Long Term, Listen Like You’re Wrong, and Measure Through Customer Impact. 

Joining Alation means being part of a fast-paced, high-growth company where every voice matters, and where we’re shaping the future of data intelligence with AI-ready data. 

Join us on our journey to build a world where data culture thrives and curiosity is celebrated each day!

Job Description:

Alation is seeking a Cybersecurity Engineer to join our security team. The Cybersecurity Engineer plays a strategic role in fortifying the security of our Cloud Service and internal infrastructure. This role goes beyond monitoring, it focuses on building, automating, and scaling security solutions that align with our growing cloud-native ecosystem. The engineer will take ownership of designing and deploying proactive security controls, integrating secure development practices, and improving our detection, response, and security hardening efforts.

This role will collaborate closely with cross-functional teams, including Engineering, Cloud, SRE, and other relevant departments, to implement robust security controls and ensure adherence to established security policies.

You’ll work cross-functionally to architect and implement security solutions aligned with industry standards such as ISO 27001, NIST 800-53 and SOC 2.

One more thing...We work in a hybrid model—you’ll join us in our Chennai office to collaborate, connect, and enjoy a team atmosphere!

What You’ll Do:

• Architect and implement scalable security controls for cloud-native and hybrid environments (primarily AWS).

• Automate vulnerability detection, remediation workflows, and security guardrails using Infrastructure as Code (IaC) tools like Terraform.

• Conduct in-depth threat modeling, cloud security reviews, and participate in the Secure Development Lifecycle (SDLC).

• Lead vulnerability and risk remediation efforts in coordination with Engineering, Cloud and SRE teams.

• Design and monitor baseline security configurations for Kubernetes (EKS) and containerized workloads.

• Extend security visibility by integrating with SIEM (e.g., Splunk, Datadog, TrendMicro) and CSPM tools.

• Develop and operationalize tools to enforce policy-as-code and continuous compliance checks (CIS Benchmarks, NIST 800-53).

• Act as a security SME in cloud and application architecture discussions.

• Participate in business continuity and disaster recovery (BCP/DR) planning and testing.

• Support NIST 800-53 compliance initiatives through technical implementation and documentation.

What You'll Need:

• Bachelor’s degree in Computer Science, Engineering, Cybersecurity, or equivalent experience.

• 5+ years of hands-on experience in cloud security engineering, DevSecOps, or application security.

• Strong AWS security experience (IAM, VPC, Security Groups, KMS, GuardDuty, etc.).

• Deep understanding of CI/CD pipelines and secure SDLC principles.

• Experience with IaC tools: Terraform, CloudFormation, etc.

• Hands-on work experience in one or more scripting languages: Python, Bash, Go.

• Familiarity with container security (EKS, Docker, runtime protections).

• Experience with vulnerability management tools such as Trivy, Snyk, or Inspector.

• In-depth knowledge of OWASP Top 10, SANS Top 25, and modern application security threats.

• Experience managing Linux/Unix environments and securing workloads.

• Familiarity with compliance frameworks such as ISO 27001, NIST 800-53, and SOC 2.

• Security certifications such as AWS Security Specialty, GCP Professional Cloud Security Engineer, or CISSP are highly desirable.

Nice to Have:

• Experience with CNAPP, CSPM, or CIEM tools.

• Understanding of Zero Trust architecture and identity-centric security (IAM, SSO, SAML, OIDC).

• Exposure to security in multi-cloud environments.

#LI-SR1