Senior Security Engineer

As a part of the world-class engineering team, that is focused on solving some unique problems in the space (and one that has been delivering to commitments, as per our customer testimonials) we are expanding our product security team. Our dev teams work at the most bleeding-edge tech stacks & on a variety of them. The pace at which things change makes it all the more challenging to solve the related security problems. To cherry the cake, we believe in guardrails over roadblocks as part of our tech culture. This means that devs have the freedom to experiment & play with their tech, while we still ensure security remains paramount.To achieve the same we are in the process of expanding our product security vertical that aims at multiple endeavours including VA/PT of our products & infrastructure, dev-sec-ops practices & tooling implementation, tooling (OSS - huge fan, commercial, in-house built), processes improvements, enhancing our infrastructure security posture at scale, web & mobile application security at scale, IoT security, etc. The aim would always be to try shifting left as much as possible & to be innovative with implementing solutions at scale. And of course, to have fun while we do this.What are we looking for ?Candidates with an overall of 5+ years of product security experience.What will you be required to do ?We value an open culture & appreciate people from varied security backgrounds and hence we are most willing to work with folks better than us, who can superman their way through at least (;)) 8 of the belowOur mission includes :- Driving secure-by-design principles across web, mobile, cloud, and IoT systems.- Building and maintaining security automation tools for CI/CD pipelines.- Enhancing our cloud infrastructure security posture at scale.- Developing secure coding patterns, libraries, and guardrails for developers.- Partnering with dev teams to identify and remediate security risks early (shift-left mindset).- Conducting architectural reviews and risk assessments for new features or products.- Assist engineering teams in performing threat modelling and working with them for effective mitigation techniques.What were looking for :We value diverse security backgrounds and want to work with professionals who are passionate about engineering secure systems at scale.Required Skills :- Strong understanding of information security fundamentals and the ability to communicate them clearly to engineering and product teams.- Hands-on experience with secure coding, DevSecOps, and security automation.- Familiarity with application architecture, threat modeling, CI/CD pipelines, infrastructure-as-code (IAC), serverless, IAM, and cloud-native security.- Experience integrating security controls into developer workflows.- Penetration testing is optional and good to have. However, ability to interpret results is a must.- Comfortable collaborating across teams and challenging assumptions constructively.- Solution-oriented, pragmatic, and focused on scalable risk mitigation.- Proficiency in at least one programming language (Python, Bash, Java, etc.) for tool development and automation.Why Explore a Career with us ?Do you like solving complex problems? Working with cutting edge cloud technologies? Creating great customer experiences that surprise and delight? Having great teammates who are collaborative, fun, and passionate about what they do? If you said yes to all of the above, you'll fit rightWe believe that business applications can be as simple and cool as the best social or consumer app and yet powerful enough to seamlessly and efficiently manage global businesses.To bring our belief to reality, we are building the world's best business applications on the cloud - using cutting edge technologies, big-data, machine learning, and human computer interaction (voice, touch, vision, sensors and IoT). Along the way, we are inventing technology to overcome anything that gets in our way.We are tackling and solving big, complex challenges, and having fun while we do itCompetitive Pay - Generous Holidays - Medical Insurance - Learning Opportunities (ref:hirist.tech)