Principal Product Security Engineer

Bengaluru, India

Applications have closed

Conga

Conga delivers a Revenue Advantage to 10,000 customers and 6.4 million users around the globe. CPQ, CLM, and Document Automation together on a single platform.

View all jobs at Conga

Company Description

A career that’s the whole package!

At Conga, we’ve built a community where our colleagues can thrive. Here you’ll find opportunities to innovate, support for growth through individual and team development, and an environment where all voices can be heard.

Conga crushes complexity within an increasingly complex world. With our revenue lifecycle management solution, we transform your unique complexities for order configuration, execution, fulfillment, and contract renewal processes with a single critical insights data model that adapts to ever-changing business requirements and aligns the understanding and efforts of every team.

Our mission: Empower customers to deliver transformational revenue growth by aligning teams, processes, and technology to maximize customer lifetime value.

Our approach is grounded in the Conga Way, a framework for what we stand for and everything we do as an organization — from hiring to decision making and product development. Developed with direct input from our colleagues, the Conga Way is the foundation for our culture.

Job Description

Job Title: Principal Product Security Engineer

Locations: Bangalore/ Pune/ Ahmedabad

Reports to: Senior Manager, Cloud Operations.

A quick snapshot…

Conga is looking for a Principal Product Security Engineer who can support, enhance, and automate cloud infrastructure platforms and software. You will be a part of the Cloud Engineering team and responsible to build, maintain, upgrade, and continuously improve cloud networks and cloud-based systems. You will partner with engineering, product, and operations teams to cultivate a secure CI/CD mindset and develop practical automation solutions. You will also build the necessary capacity to support engineering, product, and cloud operations teams throughout the software development lifecycle.

Why it’s a big deal…  

A Principal Product Security Engineer uses technical guidance and engineering best practices to securely build and scale cloud-native applications and configure network security defenses within the cloud environment. You are responsible for the smooth operation of secure cloud infrastructure, platforms, and software using cloud technology to provide data protection, container security, networking, system administration, and zero-trust architecture. All of this is vital to our operation as our customers need to have a secure and reliable method to access their data

Are you the person we’re looking for?

Related experience.  You should have a minimum of 10-14 years of experience and you will monitor, triage, and resolve security alerts promptly and ensure that every alert is investigated and resolved quickly. Adopt, implement, and enforce Cloud Security Posture Management (CSPM) standards and best practices. You will develop, continuously improve, and ensure compliance with controls built for the cloud-native platform.

Vulnerability and Security threat analysis. You’ll participate in security audits, and pen testing, collect evidence and remediate vulnerability findings as per security SLAs (Service Level Agreements). Implement and maintain security controls and compliance policies to secure and protect workloads running in public clouds. Security threat analysis, hunting, detection, and response are the key responsibilities.

Threat Intelligence and Security Monitoring. You should be able to demonstrate creativity and out-of-the-box thinking to continuously improve the organization's threat intelligence, security monitoring, detection, and response capabilities. Assist with image/ instance hardening and reduce the attack surface of various images and endpoints.

CSPM and Risk Management. You’ll implement security and compliance tools and technologies to improve security posture management, public cloud platforms (AWS, Azure, and/or IBM or GCP) management, Risk management, and compliance to meet requirements.

Here’s what will give you an edge…

Tools and certifications. Certification in orchestrating infrastructure like Terraform and Public cloud platforms like AWS/Azure/IBM/GCP.

Confident and deliberate communicator. You have a point of view and you’re completely comfortable defending it to any person or group, regardless of level or status. It’s the confidence that comes from experience. And that’s not to say you aren’t open to different views; but, when you feel strongly about a particular matter, you don’t give up easily. You’re at ease with lively debate, in fact, you welcome it. Your points are clear and concise. And you’re equally as respected for your knowledge and expertise as for your style and approach. 

Willingness to work rotational shifts. Let’s face it - our customers are in various time zones, so we need to support them. Our analysts can - if needed - be scheduled on rotational shifts and take turns carrying papers.

Willingness and flexibility to work and support 24x7x365 Production Operations. (rotational shifts)

Did we pique your interest? 

If this sounds like the kind of job you would love in the kind of environment where you would thrive, please click apply. We'd love to hear from you! 

Don’t meet every requirement for the role?  

Studies have shown that women and members of ethnic minorities are less likely to apply to jobs unless they meet every single qualification. At Conga we are dedicated to building a diverse, inclusive, and authentic workplace, so if you’re excited about this role but your experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyway. You just might be the right candidate for this or other roles.

Why it's a big deal: this paragraph is great but it does not answer the Q as why the role is a big deal. Once again , you use this header to continue to write job requirements. I have written a closing sentence which answers the Question as they "why" the job is important to the business.

#LI-UB1
 

Qualifications

Education. A bachelor’s degree in Engineering or equivalent.

Additional Information

Conga is proud to be an Equal Opportunity Employer and provides equal employment opportunities to all employees and applicants regardless of race, color, religion, gender, gender identity, age, national origin, disability, parental or pregnancy status, marriage and civil partnership, sexual orientation, veteran status, or any other characteristic protected by law. Reasonable accommodations will be made to meet the requirements of the Americans with Disabilities Act and will be provided as requested by candidates taking part in all aspects of the selection process. All your information will be kept confidential according to EEO guidelines. Conga is not open to third party solicitation or resumes for our posted FTE positions. Resumes received from third party agencies that are unsolicited will be considered complimentary.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  5  1  0

Tags: Audits Automation AWS Azure CI/CD Cloud Compliance CSPM GCP Monitoring Network security Pentesting Product security Risk management SDLC SLAs Terraform Threat intelligence

Perks/benefits: Career development Flex vacation

Region: Asia/Pacific
Country: India

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.