Product security engineer
4 weeks ago
Job Description Product Security Engineer at Traveloka will be required to ensure that our products and services are shipped with high security standards through application security testing, hardening, and secure framework. A Product Security Engineer will be smart and self starter. The person needs to find unique ways to understand complex software architecture and should be able to perform manual security code review. They need to be able to integrate security in the software development process with defense-in-depth strategies such as automated testing in CI/CD pipeline. A Product Security Engineer preferably needs to have a software development background and should have practical programming knowledge. They will work very closely with our Software Engineering Team to implement Secure SDLC in Traveloka. They will also need to have proficiency in handling multiple projects based on different frameworks and groups. Responsibilities Carry out manual and automated review of source code to identify security vulnerabilities and risks Implement automated security testing tools (SAST, DAST, IAST) and their deployment within continuous integration systems Implement hardening and secure framework such as RASP, WAF, safe library, and security decorator functions Perform vulnerability assessment & penetration testing on web API, front-end service, internal RPC, and mobile application Attend design reviews and actively lead the discussions from a security standpoint Analyze possible security incident related to application security such as payment abuse or sensitive data exposure via web API Ensure that product security requirements are identified early on and are being baked into all projects Provide effective recommendations or patches to mitigate security vulnerabilities Develop in-house tools to integrate with SDLC and to track and derive security metrics Skills & Experience Academic background in Computer Science or equivalent Relevant professional experience or extensive experience in security activities (e.g. CTF, bug bounty, security research, publications, blog) Practical knowledge of modern software development such as microservices, application containerization, REST architecture, object oriented programming, stateless/stateful authentication, and cloud platform Working knowledge of one or more of these programming languages: Java, Java Script, Kotlin, C#, Objective-C, Swift Experience in security code review, vulnerability assessment, and penetration testing. Knowledge of common vulnerabilities such as OWASP Top 10 and CWE including business logic issue (e.g. IDOR) Core skill set in two or more of the following areas: Java Script framework (e.g. React) Java framework (e.g. Spring) Android / i OS platform Dev Ops AWS Automation tool development Dynamic debugging Unit testing Algorithm & data structure If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us
-
Cyber security/ product security engineer
3 weeks ago
Bangalore, India Traveloka Full timeJob Description Product Security Engineer at Traveloka will be required to ensure that our products and services are shipped with high security standards through application security testing, hardening, and secure framework. A Product Security Engineer will be smart and self starter. The person needs to find unique ways to understand complex software...
-
Technical Product Manager
2 weeks ago
bangalore, India Astra Security Full timeAbout Astra: Astra is a cyber security SaaS company that makes otherwise chaotic pentests a breeze with its one of a kind Pentest Platform. Astra's continuous vulnerability scanner emulates hacker behavior to scan applications for 9300+ security tests. CTOs & CISOs love Astra because it helps them fix vulnerabilities in record time and move from DevOps to...
-
Technical product manager
4 weeks ago
Bangalore, India Astra Security Full timeAbout Astra: Astra is a cyber security Saa S company that makes otherwise chaotic pentests a breeze with its one of a kind Pentest Platform. Astra's continuous vulnerability scanner emulates hacker behavior to scan applications for 9300+ security tests. CTOs & CISOs love Astra because it helps them fix vulnerabilities in record time and move from Dev Ops to...
-
Staff Engineer – Product Security
2 weeks ago
bangalore, India Aviatrix Full timeJob Title: Staff Engineer – Product Security Location: Bangalore, India Who We Are: For enterprises struggling to secure cloud workloads, Aviatrix® offers a single solution for pervasive cloud security. Where current cybersecurity approaches focus on securing entry points to a trusted space, Aviatrix Cloud Native Security Fabric (CNSF) delivers runtime...
-
Staff Engineer
6 days ago
Bangalore, India Aviatrix Full timeJob Title: Staff Engineer – Product Security Location: Bangalore, India Who We Are: For enterprises struggling to secure cloud workloads, Aviatrix® offers a single solution for pervasive cloud security. Where current cybersecurity approaches focus on securing entry points to a trusted space, Aviatrix Cloud Native Security Fabric (CNSF) delivers runtime...
-
Cyber security/ product security engineer
3 weeks ago
Bangalore, India FICO Full timeFICO (NYSE: FICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. As a Product Security Engineer II in Cyber Security, you will be supporting security governance for a wide set of customer-facing products and services across full product development lifecycles. Your role focuses on executing...
-
Product Security Engineer II
2 days ago
bangalore, India FICO Full timeFICO (NYSE: FICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential!The Opportunity"As a Product Security Engineer II in Cyber Security, you will be supporting security governance for a wide set of customer-facing products and services...
-
Product Security Engineer II
2 days ago
Bangalore, India FICO Full timeFICO (NYSE: FICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential! The Opportunity "As a Product Security Engineer II in Cyber Security, you will be supporting security governance for a wide set of customer-facing products and...
-
Senior Product Security Engineer
3 weeks ago
Bangalore, Karnataka, India Rippling Full timeRippling gives businesses one place to run HR IT and Finance It brings together all of the workforce systems that are normally scattered across a company like payroll expenses benefits and computers For the first time ever you can manage and automate every part of the employee lifecycle in a single system Take onboarding for example With Rippling you can...
-
Solutions Engineer
7 days ago
bangalore, India Eventus Security Full timeJob Title: Solution Engineer Experience: 5yrs+ Location: Sanpada, Navi Mumbai Roles & Responsibilities: • Deploy the solution for the newly acquired customers as per the defined scope of work. Act as a single point of contact for all deployment-related activities. • Providing product demonstrations and showing the value add of Eventus Security’s as and...
