Security Engineer

Company Description

Molecular Connections (MC) is a leading provider of Big Data and Data Science solutions, leveraging AI-powered proprietary models to drive digital transformation for clients across various industries. With two decades of experience, MC has established a strong reputation in innovation, building data-driven decision-making strategies and creating efficiencies through AI, machine learning, and Linked Data Store technologies. The company collaborates with leading pharmaceutical and STEM industries, delivering end-to-end software development and data insights powered by proprietary platforms. MC is recognized as one of the top 15 best companies for women to work for in India, with over 70% of its workforce being women. Subsidiaries include Molecular Connections Analytics Pvt. Ltd. and Molecular Connections Research Pvt. Ltd.

Role Description

This is a full-time on-site role based in Bengaluru. The Security Engineer is a hands-on execution role within the Product Technology and Platform organization, responsible for implementing, enforcing, and monitoring security and privacy controls across platform operations, dev, test, and production environments. This role exists to translate security standards into real, consistently applied controls, including direct execution of remediation actions and enforcement of required security controls.

Key Responsibilities

• Implement and operate security controls across cloud infrastructure, endpoints, identity, and applications.
• Monitor and respond to findings from SIEM, vulnerability scanning, EDR, and CSPM tooling.
• Identify, document, and escalate security exceptions or deviations, supporting risk-based decisions and follow-up remediation.
• Execute and enforce required security controls, including taking direct action to remediate non-compliant configurations or deployments.
• Support incident response, investigation, and remediation activities.
• Enforce security and privacy requirements aligned with ISO 27001, GDPR, and internal policies.
• Produce, validate, and maintain technical evidence for security and compliance audits under the direction of the audit lead.
• Partner with Cloud Ops, Platform Engineering, Product Architecture, and Internal IT to embed security into day-to-day operations.
• Maintain security runbooks, evidence, and operational documentation.
• Automate security controls, monitoring, and remediation where feasible to reduce repeat findings and operational bloat

What Success Looks Like : Within the first 6–12 months -

• Ensured security controls are consistently implemented across environments.
• Improved detection and response times for security issues.
• Security issues and misconfigurations are remediated quickly with minimal handoffs or escalation. bcplatforms.com
• Reduced repeat findings through automation and remediation.
• Audit and compliance evidence is accurate, current, and readily available without ad hoc effort.
• Established trust with engineering and operations teams as a pragmatic security partner.

Qualifications Education & Experience:

• Bachelor’s degree in Information Security, Computer Science, or equivalent experience.
• 4–7 years in hands-on security engineering or operations roles.

Technical Skills:

• Hands-on AWS security experience as the primary environment — including security groups, IAM policy design, SCPs, CloudTrail, GuardDuty, and CSPM tooling (Wiz, Defender for Cloud, or equivalent).
• Demonstrated experience remediating security issues in live production environments.
• Experience supporting security audits, assessments, or regulatory reviews from a technical execution perspective.
• Deep IAM experience in AWS and identity platforms — least-privilege policy design, role and permission boundary architecture, and experience with federated identity (SAML/OIDC). Endpoint security and vulnerability management experience also required.
• Familiarity with security-as-code practices — integrating security scanning into CI/CD pipelines, IaC policy enforcement (e.g., Checkov, tfsec, OPA), and automated compliance checks.

Soft Skills:

• Detail-oriented and execution-focused, comfortable operating with significant autonomy in a lean security function - the person who both finds and fixes, without a large team behind them.