About the Opportunity

Job Type: Permanent

Application Deadline: 31 July 2026

Job Description

Title Cybersecurity Analyst - Cloud

Department Enterprise Engineering

Location Gurugram, Bangaluru

Reports To Lead - Cloud Platform Security Architect

Level 5

Fidelity International offers world class investment solutions and retirement expertise. As a privately owned, independent company, investment is our only business. We are driven by the needs of our clients, not by shareholders. Our vision is to deliver innovative client solutions for a better future.

Our people are passionate, engaged, smart and curious, and we give them the independence and the confidence to make a difference. While we take pride in the excellence of our investment solutions and client service, we know we can always do better. We are honest, respectful and make tough calls, challenging the status quo to achieve better outcomes through innovation. Above all else, we always put our clients first.

Enterprise Platform & Engineering is responsible to provide different internal developer platforms that are required to build and operate technology solutions that support our business. The team's mission is to create a frictionless developer experience throughout all stages of software development through to deployments and beyond. This will be a combination of engineering the required standards, policies, configurations into platform components but also to provide the right processes, engagement model, adoption guidance and expertise to enable teams to leverage the platform's Golden Paths effectively.

The analyst will contribute to security assessments, policy implementation, design reviews, and CI/CD security integration, helping ensure that cloud platforms are used in a secure, compliant, and scalable manner aligned to Fidelity's Cloud First strategy.

• Support the secure design and implementation of workloads across AWS, Azure, and hybrid environments.
• Assist in embedding security by design within cloud services and applications.
• Develop deep hands-on expertise in cloud security controls, frameworks, and tooling.
• Build toward leading secure solution architecture engagements over time.

Key Responsibilities

Cloud Security Design & Review

• Support the review of cloud workload designs to ensure alignment with enterprise security standards.
• Participate in solution design discussions with product delivery and cloud operations teams.
• Contribute to threat modelling exercises and risk assessments for cloud services.
• Assist in identifying security gaps and recommending remediation actions.

Governance, Standards & Compliance

• Support the enforcement of enterprise cloud security policies and blueprints.
• Assist in maintaining and updating security design patterns and reusable controls.
• Contribute to documentation of cloud security artefacts and reference architectures.
• Support audit preparation and evidence gathering related to cloud security controls.

DevSecOps & CI/CD Security

• Help embed security checks within CI/CD pipelines (SAST, DAST, dependency scanning, container scanning).
• Support integration of policy-as-code tools (e.g., Sentinel, OPA, Terraform security policies).
• Contribute to software supply chain security controls.

Cloud Security Monitoring & Assurance

• Assist in monitoring security posture using tools such as CSPM (e.g., InsightCloudSec).
• Support review and remediation of cloud misconfigurations and vulnerabilities.
• Help track remediation progress and produce security reporting dashboards.

Collaboration & Stakeholder Engagement

• Work closely with Cloud Operations, Platform Engineering, and Product Delivery teams.
• Participate in architecture forums and cross-team discussions.
• Support senior architects in stakeholder engagements and design workshops.

Required skills:

• 8-10 years of experience in cybersecurity, cloud engineering, or DevSecOps roles.
• Hands-on experience with at least one major public cloud platform (AWS, Azure, or GCP).
• Practical exposure to: IAM concepts, Network security controls, Encryption at rest and in transit
• Cloud logging and monitoring
• Basic understanding of CI/CD security integration.
• Familiarity with container security and Kubernetes fundamentals.
• Strong analytical and problem-solving skills.
• Ability to communicate clearly with both technical and non-technical stakeholders.

• Experience with infrastructure-as-code (Terraform, ARM, CloudFormation).
• Familiarity with OWASP Top 10 vulnerabilities.
• Exposure to security frameworks such as NIST 800-53, ISO27001, CSA.
• Understanding of GDPR, FCA, or financial services regulatory environments.
• Exposure to CSPM tools or cloud security posture assessments.

Qualifications/Certifications

• Undergraduate degree in a relevant technology field or significant relevant experience is required.
• Security accreditations such as CISM, CISSP or CISA by a recognised body are desirable but not required.
• AWS/Azure Associate level certifications
• Cloud security certifications such as CCSK or other relevant and recognised qualification are desirable.
• Certifications in major public cloud platform security and architecture practices are desirable.

Feel rewarded

For starters, we'll offer you a comprehensive benefits package. We'll value your wellbeing and support your development. And we'll be as flexible as we can about where and when you work - finding a balance that works for all of us. It's all part of our commitment to making you feel motivated by the work you do and happy to be part of our team. For more about our work, our approach to dynamic working and how you could build your future here, visit careers.fidelityinternational.com.

For more about our work, our approach to dynamic working and how you could build your future here, visit careers.fidelityinternational.com.