Senior Software Security Engineer

3 weeks ago


Yelahanka, India Talkdesk Full time

At Talkdesk, we are courageous innovators focused on redefining customer experience, making the impossible possible for companies globally. We champion an inclusive and diverse culture representative of the communities in which we live and serve. And, we give back to our community by volunteering our time, supporting non-profits and minimizing our global footprint. Each day, thousands of employees, customers and partners all over the world trust Talkdesk to deliver a better way to great experiences. At Talkdesk, our Engineering team follows a micro-service architecture approach to build the next generation of Talkdesk, with vertical teams responsible for all the decisions under their services. Through our Agile Coaches, we promote agile and collaborative practices, we are huge fans of Scrum, pair programming and we won’t let a single line of code reach production without peer code reviews. We strongly believe that the only true authority stems from knowledge, not from position and we always treat others with respect, deference and patience. Are you passionate about all things security? As a member of the Security Engineering Team at Talkdesk you will help on the team effort of building a safer Talkdesk. Depending on your profile, some of your responsibilities can include: - Provide extensive support regarding vulnerability management, including mitigation advice to development teams - Provide technical support to development teams in finding patching strategies - Provide security guidance through the infrastructure and development lifecycle and help maintain and improve our Secure Software Development Life Cycle - Be a security subject-matter expert (SME) and help development teams with their security needs - Develop security standards and practices - Perform threat modeling (e.G., using STRIDE) - Recommend security enhancements to existing processes and tools - Collaborate with key stakeholders to gather security requirements and ensure implementation - Provide operational support of various security technologies - Work closely with all teams to improve the overall security posture of Talkdesk - Perform pentests and/or help manage findings from external pentests - Approach unknown security topics,define and implement a way forward Must have: - At least 5 years of experience in application security with hands-on experience with SAST, DAST and SCA tooling - Experience integrating security testing into CI/CD pipelines - Familiarity with IaaC tooling and methodology (Terraform, Ansible, ArgoCD) - Strong experience acting as a technical vulnerability management specialist and security advisor - Strong experience working with OWASP TOP 10, CVE, CWE and other vulnerability taxonomy, implementing technical mitigationsCoding experience in one or more general-purpose languages (e.G., Java, Ruby, Python) - Experience with other secure development security tools - Experience in application architecture security review - Strong experience with securing coding practices and secure coding standards - Knowledge in applications and systems security - Knowledge in cryptographic concepts and their applications - Knowledge of networking and web protocols - Understanding of cybersecurity standards and frameworks, e.G., ISO27001, NIST, CIS, OWASP, SANS - Linux/Unix proficiency - Excellent written, verbal, and conversational communication skills - Strong stakeholder management skills to effectively convey security risks and remediation to technical and non technical audiences - Fluent in English, both verbal and written - Critical thinking skills and the ability to solve problems as they arise - Comfortable working in a fast-paced environment Nice to have: - Familiarity with Git, Ruby, Kotlin, RabbitMQ, Redis, MongoDB, PostgreSQL - Experience in conducting security tests in web and mobile applications - Experience with AI security - Knowledge and familiarity of rating vulnerabilities using CVSS 3.0 & 4.0 - Prior experience working as DevOps and/or Software Engineer - Prior experience handling security incidents - Certifications such as OSCP, CISM, CISSP, GSEC



  • Yelahanka, India Andromeda Security Full time

    Distributed Systems Development Engineer Summary: We are a stealth startup, top-tier Silicon Valley VC-funded multinational startup building a team in Bengaluru, India. You will have the opportunity to grow with the company and help secure enterprises from cloud security breaches. Job Description: Looking for dreamers, coders, hackers who want to explore the...


  • Yelahanka, Karnataka, India ServiceChannel Full time ₹ 8,00,000 - ₹ 20,00,000 per year

    Job Title:Senior Software EngineerLocation:Hybrid / RemoteJob Type:Full-time*About ServiceChannel*ServiceChannel is the leading cloud-based service automation platform for facilities management. We empower businesses to source, procure, manage, and pay for repair and maintenance services through a single, unified platform. Our mission is to simplify...


  • Yelahanka, Karnataka, India Provation Full time US$ 1,04,000 - US$ 1,30,878 per year

    Job SummaryAs a Senior Software Engineer, you will be responsible for designing, developing, and delivering high-quality software solutions. Work with a cross functional team, which includes developers, product managers, QA engineers, and product owners, to implement solutions tightly aligned with business objectives. Partner with other engineers to ensure...


  • Yelahanka, India Versa Networks Full time

    Job Title: Network and Security Engineer (1-3 Years Experience) Location: [Bengaluru] Job Type: Full-Time Department: Professional Services Company: Versa Networks About Versa Networks: Versa Networks is a leading provider of next-generation software-based network and security solutions. Our industry-leading Secure Access Service Edge (SASE) platform enables...


  • Yelahanka, India Raytheon Technologies Full time

    Unspecified Overview: This opportunity is for a Software Engineer who is eager to share their talents with the Surveillance team. The individual will be responsible for performing development and verification of different protocols and applications such as ADSB-In, Traffic Apps, IO, Maintenance, OMS, Dataload and core modules. Roles and...


  • Yelahanka, India Raytheon Technologies Full time

    Unspecified Overview: This opportunity is for a Software Engineer who is eager to share their talents with the Surveillance team. The individual will be responsible for performing development and verification of different protocols and applications such as ADSB-In, Traffic Apps, IO, Maintenance, OMS, Dataload and core modules. Roles and Responsibilities:...


  • Yelahanka, India Raytheon Technologies Full time

    Unspecified Job Overview: We're seeking a highly skilled DevSecOps Engineer to help us build reliable, scalable systems that elevate the user DevSecOps experience. In this role, you'll be responsible for developing key DevSecOps services, designing and maintaining CI/CD pipelines, integrating with essential systems, deploying service updates, and...


  • Yelahanka, India Raytheon Technologies Full time

    Unspecified Job Overview: We're seeking a highly skilled DevSecOps Engineer to help us build reliable, scalable systems that elevate the user DevSecOps experience. In this role, you'll be responsible for developing key DevSecOps services, designing and maintaining CI/CD pipelines, integrating with essential systems, deploying service updates, and...


  • Yelahanka, India Sonata Software Full time

    Job Title: Infrastructure Security Specialist Overview The Infrastructure Security Specialist is responsible for designing, implementing, and managing security controls across IT infrastructure environments. The role focuses on protecting networks, servers, cloud platforms, and data centers against internal and external threats while ensuring compliance with...


  • Yelahanka, India Aviatrix Full time

    WHO WE ARE: For enterprises struggling to secure cloud workloads, Aviatrix® offers a single solution for pervasive cloud security. Where current cybersecurity approaches focus on securing entry points to a trusted space, Aviatrix Cloud Native Security Fabric (CNSF) delivers runtime security and enforcement within the cloud application infrastructure itself...