Security Engineer

1 day ago


Bangalore Karnataka, India Cashfree Payments Full time

Responsibilities Examine the products in detail to discover vulnerabilities and collaborate with the other security engineers to practically demonstrate the exploitability and risk factors Be on the forefront of emerging vulnerabilities threats that could affect Cashfree products through independent research and study Engage with the developers in developing workarounds mitigation plans and ensure they are implemented per policy Threat Modelling Engage with the development teams to conduct secure design reviews threat modeling exercise to enumerate threats and mitigation strategies Enable the developers with knowledge of threat modeling by conducting focused workshops Secure Coding Priorities critical defects and ensure these are identified and mitigated during the sprint Integration and automation of SAST in the DevOps pipeline Build secure coding principles and propagate them across the development community Be the to-go person for developers in solving critical issues relating to secure product development Build and enhance secure coding security assessments training contents for developers and QA team Deliver training programs at various levels in the organizations Conduct workshops security tech-talks to disseminate security knowledge and awareness Qualifications Good knowledge in multiple classes of vulnerabilities that includes cross-site scripting SQL Injection CSRF cryptographic related weakness and code injection Good knowledge of any programming scripting languages such as Java Ruby and Python Good knowledge relating to services technology relating to the cloud Ability to automate security testing and improve productivity in security assessments Ability to communicate and interpret security vulnerabilities to various audiences such as development and management teams Requirements You have great interpersonal skills deep technical ability and a history of successful execution in the assessments industry If you enjoy discussing anything from procedural linking tables in kernels to remote code execution in JVMs then we want you on the team Familiarity with industry-standard threat modeling risk modeling and vulnerability classification Experience with pre-assessment architectural and API analysis to scope and prepare white-box and grey-box assessments Experience working with in-house engineering organizations S-SDLC CICD software lifecycle and QA processes B Tech in Computer Science Electrical or Computer Engineering or equivalent work experience as a software engineering or security practitioner 3 years of relevant engineering or security assessment experience experience in application security Possess a broad knowledge of attack vectors exploits and mitigations that work at scale or may be linked together for chained attacks Experience with Java Go Python or Node js bonus points for more than one Experience with assessing Cloud-native services service meshes and K notes-platform-based micro-services Be able to apply unconventional thinking and problem-solve on the boundary of your knowledge base learning new technologies or languages as needed to complete pen-test tasks Be able to think both offensively like a hacker and defensively evaluating product security and design


  • Engineering manager

    3 weeks ago


    Bangalore, India Skyhigh Security Full time

    About Skyhigh Security: Skyhigh Security is a dynamic, fast-paced, cloud company that is a leader in the security industry. Our mission is to protect the world’s data, and because of this, we live and breathe security. We value learning at our core, underpinned by openness and transparency. Since 2011, organizations have trusted us to provide them with a...

  • Security Engineer

    3 weeks ago


    Bangalore, Karnataka, India Shell Full time

    IndiaJob Family Group Information Technology IT Worker Type RegularPosting Start Date March 19 2025Business unit Projects and TechnologyExperience Level Experienced Professionals As businesses leverage digitalization opportunities their cyber-attack surface structurally increases which can lead to business disruptions data breaches and brand damage...

  • Engineering Manager

    7 days ago


    Bangalore, India Skyhigh Security Full time

    About Skyhigh Security: Skyhigh Security is a dynamic, fast-paced, cloud company that is a leader in the security industry. Our mission is to protect the world’s data, and because of this, we live and breathe security. We value learning at our core, underpinned by openness and transparency. Since 2011, organizations have trusted us to provide them...


  • Bangalore, Karnataka, India ecolab Full time

    Job Position Senior Security Engineer - Product Security Location Bangalore Karnataka Experience 6-8 Years Department Information Security Employment Type Full-Time Overview Ecolab s Information Security team is seeking a Senior Security Engineer with strong expertise in Product Security to lead and enhance secure software development practices...


  • Bangalore, Karnataka, India Victoria's Secret Full time

    Description Purpose Our team is seeking an experienced Security engineer to join our Cybersecurity team This Engineer is responsible for securing cloud environments by implementing and managing security controls detecting threats and establishing robust logging systems to monitor and audit cloud infrastructure and data Responsibilities include...

  • Security Engineer 4

    1 week ago


    Bangalore, Karnataka, India ORACLE Full time

    Job Category Information Security Engineer Minimum Qualifications 6 years in security engineering detection engineering or cloud security with exposure to SaaS and API-based environments Strong expertise in anomaly detection behavioural analytics and applied data science concepts for cybersecurity Hands-on experience with SIEM SOAR and...


  • Bangalore, Karnataka, India Victoria's Secret Full time

    Description Purpose Senior Security Engineer works within global information security function and will be responsible for Infrastructure and Application Pentest that includes Dynamic Application Security Testing API Pentest manual application and infrastructure Pentest Candidate will be responsible for ensuring the security and integrity of...


  • Bangalore, Karnataka, India Jobted IN C2 Full time

    Note By applying to this position you will have an opportunity to share your preferred working location from the following Bengaluru Karnataka India Hyderabad Telangana India Minimum qualifications Bachelor s degree or equivalent practical experience 5 years of coding experience in one or more general purpose languages 5 years of experience with...


  • Bangalore, Karnataka, India DocuSign Full time

    Company Overview Docusign brings agreements to life Over 1 5 million customers and more than a billion people in over 180 countries use Docusign solutions to accelerate the process of doing business and simplify people s lives With intelligent agreement management Docusign unleashes business-critical data that is trapped inside of documents Until now these...


  • Bangalore, India Skyhigh Security Full time

    About Skyhigh Security: Skyhigh Security is a dynamic, fast-paced, cloud company that is a leader in the security industry. Our mission is to protect the world’s data, and because of this, we live and breathe security. We value learning at our core, underpinned by openness and transparency. Since 2011, organizations have trusted us to provide them with a...