DevSecOps Engineer

About Turing

Based in Palo Alto, California, Turing is one of the world's fastest-growing AI companies accelerating the advancement and deployment of powerful AI systems. Turing helps customers in two ways: working with the world’s leading AI labs to advance frontier model capabilities in thinking, reasoning, coding, agentic behavior, multimodality, multilingualism, STEM and frontier knowledge; and leveraging that expertise to build real-world AI systems that solve mission-critical priorities for Fortune 500 companies and government institutions. Turing has received numerous awards, including Forbes's "One of America's Best Startup Employers," #1 on The Information's annual list of "Most Promising B2B Companies," and Fast Company's annual list of the "World's Most Innovative Companies." Turing's leadership team includes AI technologists from industry giants Meta, Google, Microsoft, Apple, Amazon, Twitter, McKinsey, Bain, Stanford, Caltech, and MIT. For more information on Turing, visit www.turing.com. For information on upcoming Turing AGI Icons events, visit go.turing.com/agi-icons.

Overview

We are seeking a highly skilled Cloud Security Engineer to join our Security team in India. This role is critical in enhancing and maintaining the security posture of our cloud infrastructure and services. You will work closely with engineering, DevOps, and fulfillment teams to embed best security practices into our cloud-native environments. Your primary focus will be on cloud posture management, secure configuration, identity and access management, and cloud-native security controls.

Responsibilities:

• Collaborate with engineering and fulfillment teams to integrate security best practices into cloud applications and infrastructure to reduce risk and ensure security is embedded across the SDLC.
• Review cloud architecture designs (GCP) to identify and mitigate security vulnerabilities and compliance gaps.
• Design, implement, and maintain cloud-native security monitoring tools (e.g., AWS CloudWatch, GuardDuty, Azure Sentinel).
• Define and enforce cloud security guardrails (e.g., disallow public S3 buckets, enforce encryption standards).
• Configure alerts, dashboards, and automated responses to cloud-specific security events.
• Design and manage secure IAM policies, roles, and permission models aligned with least-privilege principles.
• Perform regular audits of IAM roles and service permissions to identify and remove excessive privileges.
• Partner with DevOps teams to help define and support consistent identity practices across all environments.
• Manage GitHub security configurations and enforce secure code collaboration workflows, including GitHub Advanced Security features, branch protection rules, signed commits, codeowners, PR approvals, and dependency scanning.
• Scan Infrastructure-as-Code (e.g., Terraform, CloudFormation) for misconfigurations.
• Review secrets management strategies in CI/CD pipelines and enforce secure handling of credentials.
• Identify, track, and support remediation of vulnerabilities in cloud configurations and applications.
• Coordinate with engineering teams to triage findings and prioritize remediation efforts.
• Integrate cloud scanning tools into pipelines and remediation workflows.
• Deploy and manage container security controls across Kubernetes and Docker environments.
• Scan container images for known vulnerabilities and misconfigurations before deployment.
• Monitor runtime container security and ensure isolation and namespace boundaries.
• Ensure adherence to frameworks such as CIS Benchmarks, NIST, SOC 2, ISO 27001, or GDPR as applicable.
• Continuously evaluate emerging cloud security threats and recommend mitigation strategies.
• Participate in internal and external audits as required.

Qualifications Needed:

• Required
• Bachelor’s degree in Computer Science, Information Security, or equivalent practical experience.
• 4+ years of experience in cloud security, DevSecOps, or infrastructure security.
• Proven hands-on experience with Google Cloud Platform (GCP) is required.
• Strong knowledge of IAM, VPC design, logging/monitoring, encryption, and cloud-native firewalls.
• Experience with Infrastructure-as-Code tools, preferably Terraform or Pulumi, in GCP environments.
• Familiarity with container technologies and orchestration tools (Docker, Kubernetes).
• Strong scripting experience (Python, Bash, or similar) for automation and tooling.
• Understanding of security monitoring and SIEM integration in cloud environments.
• Excellent communication skills, both written and verbal
• Bonus:
• Certifications: GCP Professional Cloud Security Engineer, or similar are a plus.
• Experience with GitHub Advanced Security features and secure software development lifecycle (SSDLC).
• Familiarity with secret management tools like HashiCorp Vault or GCP Secret Manager.
• Familiarity with zero trust architectures or cloud workload protection platforms (CWPP).
• Contributions to open-source security tools or participation in CTFs/security communities.

Advantages of joining Turing:

• Amazing work culture (Super collaborative & supportive work environment)
• Awesome colleagues (Surround yourself with top talent from Meta, Google, LinkedIn etc. as well as people with deep startup experience)
• Competitive compensation with great tax benefits
• Expect fast career growth (High growth unicorn firm)
• Flexible work timings
• Opportunity to work on new technologies
• Full-time remote opportunity. Turing is proud to be an equal opportunity employer. We are committed to building a diverse and inclusive culture and celebrate authenticity. We do not discriminate on the basis of race, religion, color, national origin, gender, gender identity, sexual orientation, age, marital status, disability, protected veteran status, or any other legally protected characteristics

Values:

• We are client first: We put our clients at the center of everything we do, because their success is the ultimate measure of our value.
• We work at Start-Up Speed: We move fast, stay agile and favor action because momentum is the foundation of perfection
• We are Al forward: We help our clients build the future of Al and implement it in our own roles and workflow to amplify productivity.

Advantages of joining Turing: