Fime

ITOps / Security Engineer

Fime · Bengaluru, Karnataka, India

IT Services and IT Consulting · 501-1,000 employees

4 h ago
Mid (2-5 yrs) Full-time India
Log in to apply, save this posting, or score it against your profile with AI.

About the role

Secure global IT operations by managing security controls across cloud, infrastructure, and application environments. Own vulnerability management, security monitoring, and incident response while ensuring ISO 27001 compliance.

What they look for

Linux Administration Windows Server Cloud Security Kubernetes Vulnerability Management Incident Response ISO 27001 DevSecOps Networking Firewalls IAM/RBAC Terraform Ansible Python Bash SIEM

Requirements

Requires 3-4 years of experience in IT operations or infrastructure security with strong skills in Linux, Windows, and cloud platforms like AWS or Azure. A degree in Computer Science or Information Security is preferred along with familiarity with DevSecOps and containerization.

Full description

ITOps / Security Engineer Company: Fime is a globally recognised international player providing deep expertise across digital payments, mobility services, and digital identity. We work with leading organisations worldwide to solve complex challenges, identify emerging opportunities, and future-proof their strategies.

Our team of 900+ experts operates in over 20 locations around the globe, delivering solutions that support millions of transactions every day, across global markets. What sets us apart is our values: we are curious, creative, and highly collaborative, with a strong commitment to integrity - we do the right thing for our clients, our people, and our shareholders.

At Fime, the work is varied and intellectually stimulating. No two days are the same, and you will be surrounded by smart, engaged colleagues who value learning and continuous improvement.

Making innovation possible. Making the world work.

MISSION: You will secure Fime’s global IT operations by managing and improving security controls across our cloud, infrastructure, network, and application environments. You will own vulnerability management, security monitoring, and incident response activities, while supporting ISO 27001 compliance and customer security requirements. Working closely with IT, DevOps, and product teams, you will help design and operate robust, modern, and auditable security practices for our platforms and services.

ACTIVITIES:

  • Operate and improve security controls. Manage and maintain security controls across cloud, on‑prem infrastructure, networks, endpoints, and applications, ensuring configurations remain hardened and aligned with security baselines.
  • Drive vulnerability management. Perform regular vulnerability scanning, prioritisation, and remediation follow‑up; coordinate with system and application owners to reduce risk and track closure of findings.
  • Monitor, detect, and respond. Use security monitoring tools (e.g. SIEM, EDR, logs, alerts) to detect suspicious activity, investigate incidents, coordinate response actions, and document lessons learned.
  • Support compliance and audits. Maintain security policies, procedures, and technical evidence supporting ISO 27001 and customer due‑diligence requests; prepare and maintain audit documentation and recurring security reports.
  • Secure cloud and platforms. Support the security of AWS, Azure, Kubernetes, Proxmox, WatchGuard, and DevSecOps platforms by reviewing architectures, managing IAM/RBAC, hardening configurations, and implementing security best practices.
  • Embed security in DevOps. Collaborate with DevOps and development teams to integrate security into CI/CD (e.g. GitLab pipelines, SAST/DAST, image scanning), secure application deployment, and infrastructure‑as‑code workflows.
  • Maintain identity and access controls. Contribute to the management of IAM, VPN, firewalls, and network segmentation, ensuring least‑privilege access and timely review of user and service accounts.
  • Document and standardise. Create and maintain clear technical and security documentation (runbooks, standards, diagrams), and contribute to playbooks for common incidents and operational tasks.
  • Continuous improvement. Identify recurring issues and improvement opportunities across tools, processes, and architectures, and propose pragmatic security enhancements that balance risk reduction with operational efficiency.
  • Partner with global teams. Work with international colleagues across time zones to support shared platforms, participate in security projects, and contribute to the evolution of Fime’s security posture.

JOB EXPERIENCE:

  • Around 3-4 years of hands‑on experience in IT operations security, infrastructure security, or a similar role (e.g. SysAdmin/SRE with strong security responsibilities).
  • Strong experience with Linux administration, Windows Server, networking, firewalls, VPNs, and infrastructure security hardening.
  • Practical experience operating security for cloud environments (AWS and/or Azure) and container platforms (Kubernetes, Docker, Proxmox).
  • Hands‑on involvement with vulnerability management processes, security monitoring tools, and incident investigation/remediation.
  • Experience supporting ISO 27001 or similar information security frameworks (e.g. SOC2, PCI‑DSS), including audits, evidence collection, and security reporting.
  • Experience working in collaboration with DevOps / development teams on secure deployment and configuration.

KNOWLEDGE & SKILLS:

  • Degree in Computer Science, Information Security, Engineering, or a related field; equivalent practical experience will also be considered.
  • Strong technical skills in Linux and Windows administration, networking fundamentals, firewalls, VPNs, and infrastructure security.
  • Knowledge of cloud security concepts and services in AWS and/or Azure, including IAM, network security groups, encryption, and monitoring.
  • Experience with Kubernetes, Docker, Proxmox, and IAM/RBAC management for these environments.
  • Familiarity with DevSecOps practices, GitLab CI/CD, scripting (Bash/Python), and Infrastructure as Code tools such as Terraform and/or Ansible.
  • Understanding of threat detection, incident response processes, and common security monitoring tools (e.g. SIEM, EDR, log management).
  • Ability to maintain accurate technical and security documentation, policies, and procedures.
  • Strong analytical and problem‑solving skills, with a structured and pragmatic approach to prioritising risks and remediation.
  • Clear written and verbal communication skills, able to work effectively with technical and non‑technical stakeholders.
  • Ability to manage multiple tasks and tickets in parallel, with a high sense of ownership and accountability.

Contract: Permanent, full time Starting at the latest: ASAP Location: Bengaluru, Karnataka