Senior Security Engineer

Location : Remote (India) Type : Full-Time Company : Symosis Security About Symosis Security Symosis Security is a fast-growing cybersecurity and technology firm helping global organizations strengthen their cloud, application, and AI security posture. We combine deep technical expertise with practical execution—supporting clients across threat modeling, penetration testing, security automation, and SaaS posture management. Our team operates with startup agility and enterprise discipline, partnering with industry leaders to solve complex, high-impact security challenges. If you thrive in hands-on, technical work and want to shape how modern security is built and delivered across AI and cloud ecosystems, Symosis is the place to do it. The Role We’re looking for a Senior Security Engineer with at least 5 years of hands-on experience in security engineering, security development, and product-level threat modeling. You’ll be responsible for performing architecture reviews, penetration testing, AI/ML threat assessments, and security automation for large-scale SaaS and cloud environments. The ideal candidate is equally comfortable reading code, building scripts, and evaluating complex architectures—especially in Azure, API, and AI/ML ecosystems. Key Responsibilities Act as a hands-on security engineer with strong software development and coding skills to design, build, and assess secure systems. Perform threat modeling and secure design reviews for applications, APIs, and cloud architectures. Conduct penetration testing and vulnerability assessments for web, API, and cloud environments. Develop and maintain security automation tools and scripts (Python preferred) to support ongoing validation and monitoring. Evaluate and harden Azure cloud configurations including identity, network, and data protection controls. Collaborate closely with software and product engineering teams to embed security in every phase of development. Apply AI/ML security principles to assess risks in data pipelines, model training, and inference systems. Produce clear, detailed technical reports and recommendations that translate findings into actionable improvements. Stay current on evolving security frameworks, attack techniques, and cloud security practices (OWASP, MITRE, NIST, ISO). Preferred Qualifications 7–10 years of total experience with at least 5 years in security engineering, product security, or security development roles. Proven experience conducting threat modeling and design reviews for production systems and APIs. Strong understanding of software development lifecycle (SDLC) and secure coding practices. Certifications such as CISSP, CEH, OSCP, or Azure Security Engineer Associate. Working knowledge of AI/ML security, including model lifecycle threats, data protection, and responsible AI principles. Deep expertise in Azure cloud security (IAM, network isolation, encryption, key management). Familiarity with DevSecOps, CI/CD pipelines, and integrating automated security testing into build workflows. Experience securing or assessing SaaS and third-party integrations using APIs and modern authentication (OAuth 2.0, OIDC, JWT). Ability to translate technical findings into clear, actionable recommendations for engineering and leadership audiences. Strong communication and documentation skills — capable of authoring security assessments, design reviews, and executive summaries. Why Join Symosis? Work on real-world AI, cloud, and SaaS security challenges at enterprise scale. Collaborate with high-caliber global security and engineering teams on impactful projects. Enjoy a technically driven, fast-growing environment with direct ownership of your work. Flexible schedule, remote setup, and strong individual autonomy. Opportunity to shape modern product and AI security practices across multiple industries.