Cloud Engineer

Cloud Engineer
Company:  Compliance Foundry | Comperis Cybersecurity | Fixpliance AI

Location:

Vadodara, Gujarat, India (In-Office Required)

Employment Type:

Full-Time
Level:  IC4 - Mid-Level Individual Contributor (Dev Ops/SRE)

About Us
Compliance Foundry, Comperis Cybersecurity, and Fixpliance AI form a unified group delivering Managed Compliance as a Service and Security Engineering as a Service to SMBs across fintech, healthcare, and SaaS. We help international clients build and maintain security postures through expert engineering, compliance frameworks, and our proprietary Fixpliance

AI platform.

We are a lean, founder-led organization where technical talent works directly with the CEO and engages with international clients daily. This is not a back-office role - it is a delivery-oriented position at the intersection of cloud infrastructure, security operations, and managed services.

About Vadodara, Gujarat
Vadodara , often called the "Cultural City of India (Sanskrutik nagri)," is a historic center of learning and arts located in Gujarat. Home to several leading universities and educational institutions, the city offers a vibrant, diverse, and metropolitan community alongside a strong reputation for safety, cultural heritage, and low crime rates. With a significantly lower cost of living than major Indian metros, the city offers an excellent quality of life and is home to major companies such as Mastercard, Larsen & Toubro, and Tata Advanced Systems.

The city's strategic location provides seamless connectivity via Vadodara Airport (flights to major Indian and international hubs) and Central Railway Station (direct rail access to Delhi, Mumbai, Bangalore, and other key business centers).

The Role
We are hiring a Cloud Engineer on the Dev Ops/SRE track to serve as the primary technical point of contact for our international managed services clients.

This role is 80% client-facing and 20% internal , requiring a practitioner who can independently assess, architect, implement, and operate security infrastructure across multi-cloud and hybrid environments.

You will lead client engagements end-to-end: from initial security assessments and proposal development through implementation, ongoing operations, and SLA delivery. You will report directly to the Technical Founder and CEO, participate in engagement strategy, and collaborate with compliance engineering and product teams.

What You'll Do

Client Engagement and Delivery (80%)
Serve as the primary technical contact for assigned international clients across fintech, healthcare, and SaaS.
Conduct security posture assessments spanning AWS, Azure, GCP, and hybrid/on-premises infrastructure.
Design and implement security architecture improvements aligned with each client's risk profile, regulatory requirements, and business constraints.
Lead technical meetings, deliver architecture presentations, and communicate complex security concepts to technical and non-technical stakeholders.
Author technical proposals, RFP/RFI responses, and architecture documentation.
Manage SLA commitments, track delivery milestones, and drive client satisfaction.

Security Engineering and Operations
Implement and manage cloud security controls across AWS, Azure, and GCP (Security Hub, Guard Duty, Defender/Sentinel, Security Command Center).
Deploy and operate CSPM tooling (Prowler, Wiz, Scout Suite) for continuous cloud security monitoring.
Configure network security infrastructure: firewalls (pf Sense, Fortinet, Palo Alto), Zero Trust solutions (Wire Guard, Tailscale, Cloudflare Access), and IDS/IPS systems.
Manage endpoint security platforms, including EDR solutions (Crowd Strike, Sentinel One, Microsoft Defender for Endpoint) and host-based monitoring (osquery).
Administer identity and access management systems: SSO/SAML/OIDC, privileged access management (Hashi Corp Vault, Cyber Ark), and directory services (Azure AD, Okta).
Operate SIEM platforms (Splunk, Elastic SIEM, Wazuh, Datadog Security) for threat detection, log analysis, and alerting.
Execute vulnerability management programs using Nessus, Qualys, OpenVAS, Trivy, and Snyk.
Build and maintain Infrastructure as Code using Terraform, Ansible, Cloud Formation, or Pulumi.
Secure containerized environments and Kubernetes clusters (Docker, Kubernetes, Falco, kube-bench, Aqua Security).
Integrate security into CI/CD pipelines (Git Hub Actions, Git Lab CI, SAST/DAST tooling).
Implement email security controls (SPF/DKIM/DMARC) and email gateway configurations.
Manage data security controls: encryption, DLP solutions, and key management services.
Develop incident response playbooks, forensic investigation procedures, and chain of custody documentation.
Design backup and disaster recovery strategies, including RPO/RTO planning.

Internal Collaboration (20%)
Collaborate with compliance engineering teams on evidence collection and audit preparation.
Provide product feedback based on field experience with Fixpliance

AI and client needs.
Contribute to the creation of runbooks and…