Product Security Engineer

2 days ago

Delhi, Delhi, India Sun King Full time ₹ 15,00,000 - ₹ 28,00,000 per year
Product Security Engineer

Department: Global Analytics and Technology

Employment Type: Permanent - Full Time

Location: India

Reporting To: Head of Cyber Security


Description
Job location: Remote in India

About the role:
In this role, your principal mission will be to drive security-related engineering engagement and technical remediation across Sun King's product lines. You will work across application security, architecture reviews, and cloud security to scale security engagement across Engineering. As a Product Security Engineer, you will leverage your software engineering skills and security expertise to raise the security bar across our infrastructure, mobile services, and web apps.

What you will be expected to do:
  • Perform Application Security Reviews, including Penetration Testing and Code Reviews, on Mobile Applications, APIs, and web applications using OWASP standards.
  • Identify security loopholes in product design through Threat Modeling.
  • Deploy and manage security tool integration into the CI/CD pipeline.
  • Perform SAST, DAST, and SCA scans using in-house preferred tools; review scan results for false positives and deliver findings to engineering teams.
  • Lead product security efforts during security incident management and define post-incident remediation plans.
  • Set up automated processes to monitor applications and systems for unusual activities (e.g., unauthorized access, modification, duplication, or destruction of information).
  • Stay updated on the latest security vulnerabilities and trends.

You might be a strong candidate if you have/are:
  • 3–6 years of experience in penetration testing, code review, DevSecOps, and architecture design reviews.
  • Minimum 3 years of experience in the application security domain.
  • Proficient in identifying vulnerabilities, guiding remediation steps, and tracking timely closure of issues based on severity.
  • Experience with web application scanning tools such as Qualys WAS, AppSpider, Acunetix, Veracode, Burp Suite, Netsparker, OWASP ZAP, Checkmarx, Whitesource, Snyk, or similar.
  • Strong knowledge of secure protocols, encryption standards, and authentication mechanisms.
  • Holds at least one security certification such as OSCP, OSWE, GPEN, GWAPT, CRTP, etc.
  • Good communication and collaboration skills with the ability to engage effectively with diverse stakeholders.

What Sun King offers:
  • Professional growth in a dynamic, rapidly expanding, high-social-impact industry
  • An open-minded, collaborative culture made up of enthusiastic colleagues who are driven by the challenge of innovation towards profound impact on people and the planet.
  • A truly multicultural experience: you will have the chance to work with and learn from people from different geographies, nationalities, and backgrounds.
  • Structured, tailored learning and development programs that help you become a better leader, manager, and professional through the Sun King Center for Leadership.

  • Security Engineer

    6 days ago

    Delhi, Delhi, India TAC Security Full time ₹ 5,00,000 - ₹ 8,00,000 per year

    Job descriptionAs a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and...

  • Security Engineer

    4 days ago

    Delhi, Delhi, India TAC Security Full time

    Job description As a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems...

  • Security Engineer

    5 days ago

    Delhi, Delhi, India TAC Security Full time

    Job Description :As a Security Engineer VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and...

  • Cyber Security Analyst

    1 week ago

    Delhi, Delhi, India P.I.V.O.T Security Full time ₹ 6,00,000 - ₹ 12,00,000 per year

    About P.I.V.O.T SecurityP.I.V.O.T Security, established in 2022, is a dynamic offensive cybersecurity company committed to closing the gap between offensive and defensive strategies through groundbreaking research and development. Our cutting-edge threat intelligence platform mimics real-world offensive techniques to pinpoint vulnerabilities in an...

  • Cyber Security Product Leader

    1 week ago

    Delhi, Delhi, India beBeeCyberSecurity Full time ₹ 2,00,00,000 - ₹ 2,50,00,000

    Job Title: Cyber Security Product LeaderWe are seeking an accomplished Cyber Security Product Leader to spearhead our cybersecurity offerings and drive business growth.Main Responsibilities:Develop and own the product vision, strategy, and roadmap for cybersecurity products to maximize market share and revenue.Conduct thorough market research, competitive...

  • Product Security Engineer

    2 weeks ago

    Delhi, Delhi, India PhonePe Full time

    Job DescriptionKey Deliverables- Conduct in-depth penetration testing of web, API, and mobile platforms- Perform secure code reviews using manual and automated techniques- Develop security automation tools and integrate with CI/CD pipelines- Create threat models and provide remediation guidance to developersRole Responsibilities- Collaborate with developers...

  • Security Engineer

    1 week ago

    Delhi, Delhi, India Questhiring Full time

    Job Description : Role : Security Engineer IIILocation : Gurgaon (Work From Office 5 Days)Experience : 9+ YearsNotice Period : Immediate to Max 30 DaysAbout the Role :We are looking for a seasoned Security Engineer (Level III) with strong expertise in cybersecurity, cloud security, and security engineering. The role focuses on advancing security...

  • Full Stack Developer

    20 hours ago

    Delhi, Delhi, India TAC Security Full time

    Job DescriptionAs a Full Stack Developer specializing in security products, you will play a key role in the development and enhancement of our cybersecurity solutions. Based in Aerocity Delhi, India, you will work closely with cross-functional teams to design, develop, and maintain secure and scalable software applications. Your expertise in full stack...

  • WordPress Product Engineer

    1 week ago

    Delhi, Delhi, India beBeeSoftware Full time ₹ 10,00,000 - ₹ 15,00,000

    Job TitleProfessional Summary:A motivated software engineer with a strong focus on WordPress product development and security is needed to join our team.The ideal candidate will have expertise in PHP, WordPress core, plugin development, and web application security.Experience in debugging and testing across multiple browsers and platforms is also...

  • Full Stack Developer

    5 days ago

    Delhi, Delhi, India TAC Security Full time ₹ 1,50,000 - ₹ 28,00,000 per year

    As a Full Stack Developer specializing in security products, you will play a key role in the development and enhancement of our cybersecurity solutions.Based in Aerocity Delhi, India, you will work closely with cross-functional teams to design, develop, and maintain secure and scalable software applications. Your expertise in full stack development,...