Hireflex247 India Private Limited, formerly known as Hireflex247 India Pvt. Ltd., has officially changed its company name to ARJ GLOBAL PRIVATE LIMITED with effect from 15th September 2025 Hireflex247 India Private Limited, formerly known as Hireflex247 India Pvt. Ltd., has officially changed its company name to ARJ GLOBAL PRIVATE LIMITED with effect from 15th September 2025
Address
UK & INDIA
Email
info@hireflex247.com
Phone
+44 33 0001 0625
Technology Experts
  • February 11, 2026
  • hireflex247
  • 0

Senior Cloud Security & Disaster Recovery Consultant

Location: Bangalore (2 days onsite per week)

About the Role

We are seeking an experienced Cloud Security & Disaster Recovery Consultant to support a complex cybersecurity landscape covering web, mobile, cloud, infrastructure, and embedded technology environments.

The role focuses on strengthening cloud security controls, managing vulnerability assessments, and leading cyber-driven Disaster Recovery (DR) strategy and execution across diverse digital platforms hosted in both cloud and on-prem environments.

This is a hands-on technical and strategic role requiring strong architectural thinking, cloud security expertise, and DR ownership.

Key Responsibilities

Cloud Security Enablement

  • Identify architectural-level security issues and vulnerabilities within cloud environments.
  • Conduct deep-dive cloud security vulnerability assessments and recommend mitigations.
  • Implement and manage cloud-native security controls across Azure, AWS, GCP, AliCloud, or hybrid environments.
  • Support secure provisioning and management of cloud resources.
  • Review CDN, firewall configurations, and network segmentation.
  • Provide security guidance for both monolithic and containerized applications.

Vulnerability Management

  • Configure and manage authenticated vulnerability scans (Windows, Linux, network devices).
  • Tune scanning engines and schedules for large-scale environments.
  • Analyze and triage vulnerabilities using tools such as Prisma, Rapid7, etc.
  • Interpret CVSS scoring and apply risk-based prioritization.
  • Validate findings via Metasploit or manual testing.
  • Coordinate remediation activities and reduce false positives.
  • Analyze vendor penetration testing reports (especially cloud components).

Disaster Recovery (DR) Ownership

  • Define and own a cyber-driven DR strategy (including ransomware scenarios).
  • Align DR strategy with:
    • Business Impact Analysis (BIA)
    • Risk appetite
    • Regulatory expectations (NIST, ISO 22301, ISO 27001, SOC 2)
  • Identify crown-jewel systems and define recovery priorities.
  • Design recovery sequencing and technical recovery plans.
  • Define RTO/RPO objectives and failover strategies (active-active / active-passive).
  • Maintain DR runbooks and conduct tabletop exercises.
  • Identify gaps and drive continuous improvement.
  • Ensure backup validation, restoration testing, immutable backups, and offsite storage strategies.

Technical Scope

The environment spans:

  • Web applications
  • Mobile applications
  • Cloud platforms (Azure, AWS, GCP, AliCloud)
  • Cloud infrastructure
  • Embedded devices (e.g., cameras, IoT sensors)
  • Hybrid on-prem/cloud architectures

Required Skills & Experience

Core Expertise (Most Important)

  1. Disaster Recovery procedures and management
  2. Vulnerability management at scale
  3. Cloud security architecture and implementation

Technical Competencies

  • Strong system architecture understanding (on-prem, cloud, hybrid)
  • Deep knowledge of IaaS, PaaS, SaaS models
  • Experience with Azure Security Center or equivalent CSP security tooling
  • Container security in cloud environments
  • IAM, identity flows, network dependencies (VNET/VPC concepts)
  • Web and mobile tiered architectures (app servers, DB, firewall layers)
  • Threat modelling fundamentals
  • Strong knowledge of OWASP Top 10
  • Backup & recovery technologies (snapshots, immutable backups)
  • DNS failover, load balancing, redundancy models
  • Control mapping to security frameworks
  • Experience orchestrating vulnerability tools across multi-cloud environments
  • Relevant cloud security certifications preferred

Soft Skills

  • Strong communication and stakeholder education capability
  • Ability to translate business impact into technical SLAs
  • Comfortable working across product, engineering, and infrastructure teams
  • Proactive, structured, and risk-aware mindset

Ideal Candidate Profile

  • Hands-on cloud security architect
  • Experienced in multi-cloud environments
  • Comfortable owning DR strategy end-to-end
  • Strong in vulnerability analysis and remediation
  • Able to work both strategically and operationally
Job Type: Contract
Job Location: Bengaluru

Apply for this position

Allowed Type(s): .pdf, .doc, .docx