Current jobs related to Security Engineer-2 - Bengaluru, Karnataka - Cashfree Payments
-
Senior Security Engineer
2 days ago
Bengaluru, Karnataka, India Skyhigh Security Full time US$ 1,25,000 - US$ 1,75,000 per yearJob Title:Senior Security EngineerAbout Skyhigh Security:Skyhigh Security is a dynamic, fast-paced, cloud company that is a leader in the security industry. Our mission is to protect the world's data, and because of this, we live and breathe security. We value learning at our core, underpinned by openness and transparency.Since 2011, organizations have...
-
Application Security Engineer 2
3 days ago
Bengaluru, Karnataka, India PowerSchool Group Full time ₹ 15,00,000 - ₹ 20,00,000 per yearOverview:At PowerSchool, we are a dedicated team of innovators guided by our shared purpose of powering personalized education for students around the world. From the central office to the classroom to the home, PowerSchool supports the entire educational ecosystem as the global leader of cloud-based software for K-12 education. Our employees make it all...
-
Metron Security
3 days ago
Bengaluru, Karnataka, India Metron Security Private Limited Full timeWe are looking for passionate developers with 2-5 years of experience in software development to join the Metron Security team as a Software Engineer.Metron Security provides automation and integration services to leading cybersecurity companies. Our engineering team works on leading security platforms, including Splunk, IBMs QRadar, ServiceNow, Crowdstrike,...
-
Senior Compliance Engineer
13 hours ago
Bengaluru, Karnataka, India Skyhigh Security Full timeAbout Skyhigh Security: Skyhigh Security is a dynamic, fast-paced, cloud company that is a leader in the security industry. Our mission is to protect the world's data, and because of this, we live and breathe security. Since 2011, organizations have trusted us to provide them with a complete, market-leading security platform built on a modern cloud stack....
-
Senior Compliance Engineer
5 days ago
Bengaluru, Karnataka, India Skyhigh Security Full timeAbout Skyhigh Security: Skyhigh Security is a dynamic, fast-paced, cloud company that is a leader in the security industry. Our mission is to protect the world's data, and because of this, we live and breathe security. We value learning at our core, underpinned by openness and transparency. Since 2011, organizations have trusted us to provide them with a...
-
Senior Compliance Engineer
22 hours ago
Bengaluru, Karnataka, India Skyhigh Security Full timeAbout Skyhigh Security:Skyhigh Security is a dynamic, fast-paced, cloud company that is a leader in the security industry. Our mission is to protect the world's data, and because of this, we live and breathe security. We value learning at our core, underpinned by openness and transparency. Since 2011, organizations have trusted us to provide them with a...
-
Security Engineer
2 weeks ago
Bengaluru, Karnataka, India Exxat Full timeCompliance Security Engineer Location: Bangalore (Hybrid) Experience: 2–5 Years About the Role: We're looking for a self-driven Compliance Security Engineer to take ownership of our security and privacy compliance initiatives. You'll play a key role in implementing, maintaining, and enhancing compliance with frameworks like ISO 27001, HIPAA, SOC 2,...
-
Senior Compliance Engineer
2 days ago
Bengaluru, Karnataka, India Skyhigh Security Full time ₹ 15,00,000 - ₹ 20,00,000 per yearJob Title:Senior Compliance EngineerAbout Skyhigh Security:Skyhigh Security is a dynamic, fast-paced, cloud company that is a leader in the security industry. Our mission is to protect the world's data, and because of this, we live and breathe security. We value learning at our core, underpinned by openness and transparency.Since 2011, organizations have...
-
Software Engineer 2
2 days ago
Bengaluru, Karnataka, India Okta Full time US$ 1,20,000 - US$ 2,00,000 per yearGet to know OktaOkta is The World's Identity Company. We free everyone to safely use any technology, anywhere, on any device or app. Our flexible and neutral products, Okta Platform and Auth0 Platform, provide secure access, authentication, and automation, placing identity at the core of business security and growth.At Okta, we celebrate a variety of...
-
IT Security Engineer
3 days ago
Bengaluru, Karnataka, India Mentorpal Tech Hiring Full timeAbout the Role : IT Security EngineerWe are seeking an experienced IT Security Engineer to join our team in Bengaluru. The ideal candidate will have strong expertise in enterprise IT infrastructure and system security, with hands-on experience managing and securing cloud, identity, and endpoint platforms. You will play a key role in safeguarding our IT...
Security Engineer-2
4 weeks ago
Responsibilities:
- Examine the products in detail to discover vulnerabilities and collaborate with the other security engineers to practically demonstrate the exploitability and risk factors.
- Be on the forefront of emerging vulnerabilities/threats that could affect Cashfree products through independent research and study.
- Engage with the developers in developing workarounds/mitigation plans and ensure they are implemented per policy.
- Threat Modelling: Engage with the development teams to conduct secure design reviews/threat modeling exercise to enumerate threats and mitigation strategies.
- Enable the developers with knowledge of threat modeling by conducting focused workshops.
- Secure Coding: Priorities critical defects and ensure these are identified and mitigated during the sprint.
- Integration and automation of SAST in the DevOps pipeline.
- Build secure coding principles and propagate them across the development community.
- Be the to-go person for developers in solving critical issues relating to secure product development.
- Build and enhance secure coding / security assessments training contents for developers and QA team.
- Deliver training programs at various levels in the organizations.
- Conduct workshops/security tech-talks to disseminate security knowledge and awareness. Qualifications.
- Good knowledge in multiple classes of vulnerabilities that includes cross-site scripting, SQL Injection, CSRF, cryptographic related weakness, and code injection.
- Good knowledge of any programming/scripting languages such as Java, Ruby, and Python.
- Good knowledge relating to services/technology relating to the cloud.
- Ability to automate security testing and improve productivity in security assessments.
- Ability to communicate and interpret security vulnerabilities to various audiences such as development and management teams.
Requirements
- :You have great interpersonal skills, deep technical ability, and a history of successful execution in the assessments industry. If you enjoy discussing anything from procedural linking tables in kernels to remote code execution in JVMs, then we want you on the team
- .Familiarity with industry-standard threat modeling, risk modeling, and vulnerability classification
- .Experience with pre-assessment architectural and API analysis to scope and prepare white-box and grey-box assessments
- .Experience working with in-house engineering organizations, S-SDLC/CICD software lifecycle and QA processe
- sB. Tech. in Computer Science, Electrical, or Computer Engineering, or equivalent work experience as a software engineering or security practitioner
- .3+ years of relevant engineering or security assessment experience, experience in application security
- .Possess a broad knowledge of attack vectors, exploits, and mitigations that work at scale or may be linked together for chained attacks
- .Experience with Java, Go, Python, or Node.js (bonus points for more than one)
- .Experience with assessing Cloud-native services, service meshes, and K notes-platform-based micro-services
- .Be able to apply unconventional thinking and problem-solve on the boundary of your knowledge base, learning new technologies or languages as needed to complete pen-test tasks
- .Be able to think both offensively (like a hacker) and defensively (evaluating product security and design
)
