Senior Member of Technical Staff

About the Role:
 

ThoughtSpot is on a mission to create a more fact-driven world. Our platform is disrupting the $200B+ analytics market industry by making it 1000x faster and easier for non-technical business people to answer their own data questions, based on innovations in search engines, in-memory large-scale computing & AI technology. With ThoughtSpot, anyone from C-suite executives to front-line employees can use a simple search to instantly analyse billions of rows of data, and leverage artificial intelligence to get relevant insights on questions they might not have thought to ask. If you’re looking to solve hard problems in a large market, this is the role for you!

ThoughtSpot is a pioneering company at the forefront of the data analytics and business intelligence industry. Our platform empowers organizations to transform their data into actionable insights, enabling them to make smarter, data-driven decisions. 

What You Will Do:

• Contribute towards the overall security posture of ThoughtSpot services running across multiple cloud and hybrid environments.

• Lead and conduct security reviews and threat modelling for architecture changes and feature design, while ensuring robust mitigation of identified risks.

• Conduct application and infrastructure penetration testing for ThoughtSpot’s web application, mobile applications for iOS and Android, and public APIs through automated and manual testing.

• Provide technical leadership and training to product teams based on the continuously evolving security landscape and best practices of application and cloud security to prevent security vulnerabilities.

• Work with members of our Application security test and Infosec team to assess new security vulnerabilities and assist product teams by providing risk analysis, suggesting fixes, and plugging gaps in prevention and detection controls for the overall product.

What You Will Bring:

• 5+ years in cloud security, security engineering, security solutions, network security, architecture, and operations experiences in SaaS and on-prem products.

• Expertise in OWASP top 10 risks prevention and detection methodologies.

• Working knowledge of various testing methodologies and tools used by security researchers (e.g. OWASP ZAP, BurpSuite, Nmap).

• 3+ years of hands-on experience on black box, gray box, and white box web and mobile app penetration testing to find vulnerabilities.

• Expertise in application, cloud, and network security domain.

• Comfortable automating with scripting languages such as python, groovy, javascript.

• Knowledge of secure SaaS architecture and cloud operational models.

• Experience in communicating and collaborating with diverse, cross-functional teams working across different geographic time-zones.

• Bachelor/Masters in Computer Science, Information Security, Cybersecurity, or equivalent.

Standout Skills/Key Differentiators:

• Certifications such as Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), eLearnSecurity Certified Professional Penetration Tester (eCPPT).

• Strong working knowledge of at least one programming language C++, Java, Go.

• Deep understanding and experience of multi-layer security controls ensuring confidentiality, integrity, availability, and auditability (e.g., DDoS protection, WAF, CSPM, SIEM, Network Segregation, Encryption, IAM).

• Experience and understanding of Container/Kubernetes security and controls.

What makes ThoughtSpot a great place to work?

ThoughtSpot is the experience layer of the modern data stack, leading the industry with our AI-powered analytics and natural language search. We hire people with unique identities, backgrounds, and perspectives—this balance-for-the-better philosophy is key to our success. When paired with our culture of Selfless Excellence and our drive for continuous improvement (2% done), ThoughtSpot cultivates a respectful culture that pushes norms to create world-class products. If you’re excited by the opportunity to work with some of the brightest minds in the business and make your mark on a truly innovative company, we invite you to read more about our mission, and apply to the role that’s right for you.

ThoughtSpot for All

Building a diverse and inclusive team isn't just the right thing to do for our people, it's the right thing to do for our business. We know we can’t solve complex data problems with a single perspective. It takes many voices, experiences, and areas of expertise to deliver the innovative solutions our customers need. At ThoughtSpot, we continually celebrate the diverse communities that individuals cultivate to empower every Spotter to bring their whole authentic self to work. We’re committed to being real and continuously learning when it comes to equality, equity, and creating space for underrepresented groups to thrive. Research shows that in order to apply for a job, women feel they need to meet 100% of the criteria while men usually apply after meeting 60%. Regardless of how you identify, if you believe you can do the job and are a good match, we encourage you to apply.