Principal Information Security Engineer

It's fun to work in a company where people truly BELIEVE in what they're doing!

We're committed to bringing passion and customer focus to the business.

Job Description

This role requires working from our local Hyderabad office 2-3x a week. 

INTRODUCTION: 

As an Information Security Engineer, you will play a critical role in driving secure application development and vulnerability remediation across our AWS and Azure cloud environments. You'll collaborate with cross-functional teams to embed security into systems, tools, and workflows, ensuring the security and integrity of our digital assets.

This role is ideal for someone who thrives in a cloud-native, developer-focused environment and is passionate about building scalable security practices—not just identifying issues, but helping resolve them through engineering and automation.

WHAT YOU’LL DO:

• Conduct vulnerability scans and risk assessments in public cloud environments (AWS, Azure) to identify and remediate security risks
• Support the integration and ongoing use of SAST, DAST, and SCA tools within CI/CD pipelines and developer workflows
• Collaborate with development teams to improve secure application development practices and provide guidance on vulnerability remediation
• Contribute to application and infrastructure threat modeling to proactively identify potential risks
• Evaluate and advise on the security of AI-enhanced applications and large language models (LLMs)
• Apply Kubernetes and container security best practices to help ensure secure deployment of services
• Define and maintain application security governance, policies, and technical standards
• Work with external penetration testers to coordinate testing efforts and ensure timely triage and resolution of findings (note: this is not a primary pen testing role)
• Maintain and enhance security logging and monitoring strategies in collaboration with cloud ops and SIEM teams
• Provide training and knowledge-sharing to development teams on application security tools and best practices
• Stay up to date on current security trends, threats, and regulatory changes to continuously improve security posture
• Partner with IT, legal, compliance, and other teams to ensure a holistic and aligned approach to security

WHAT YOU’LL NEED:

• Bachelor's degree in computer science, Information Security, or a related field or related work experience
• CISSP certification (or equivalent security certification) required; CSSLP is a plus
• 7-10 years of Information Security experience with at least 5 years in IT roles .
• Strong understanding of security architecture design, particularly in Kubernetes, and familiarity with industry-standard security frameworks and best practices
• Proven experience  of conducting penetration tests, vulnerability assessments, risk assessments, and threat modelling.
• Knowledge of regulatory standards such as  GDPR, PCI_DSS 4.0, and ISO-27001
• Solid understanding of the Software Development Life Cycle (SDLC) and its integration with secure development practices.
• Strong communication skills in English and the ability to work collaboratively in a team environment.

WHAT’S IN IT FOR YOU:  

• Purpose led company with a Values focused culture – Best Life, One Team, Growth Mindset 

• Time Off – competitive PTO plans with 15 Earned accrued leave, 12 days Sick leave, and 12 days Casual leave per year 

• 11 Holidays plus 4 Days of Disconnect – once a quarter, we take a collective breather and enjoy a day off together around the globe. #oneteam 

• Group Mediclaim insurance coverage of INR 500,000 for employee + spouse, 2 kids, and parents or parent-in-laws, and including EAP counseling 

• Life Insurance and Personal Accident Insurance 

• Best Life Perk – we are committed to meeting you wherever you are in your fitness journey with a quarterly reimbursement 

• Premium Calm App – enjoy tranquility with a Calm App subscription for you and up to 4 dependents over the age of 16 

• Support for working women with financial aid towards crèche facility, ensuring a safe and nurturing environment for their little ones while they focus on their careers. 

We’re committed to diversity and passion, and encourage you to apply, even if you don’t demonstrate all the listed skillsets! 

ABC’S COMMITMENT TO DIVERSITY, EQUALITY, BELONGING AND INCLUSION: 
ABC is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.  We are intentional about creating an environment where employees, our clients and other stakeholders feel valued and inspired to reach their full potential and make authentic connections. We foster a workplace culture that embraces each person’s diversity, including the extent to which they are similar or different. ABC leaders believe that an equitable and inclusive culture is not only the right thing to do, it is a business imperative. Read more about our commitment to diversity, equality, belonging and inclusion at abcfitness.com  

ABOUT ABC: 

ABC Fitness (abcfitness.com) is the premier provider of software and related services for the fitness industry and has built a reputation for excellence in support for clubs and their members. ABC is the trusted provider to boost performance and create a total fitness experience for over 41 million members of clubs of all sizes whether a multi-location chain, franchise or an independent gym. 

 
Founded in 1981, ABC helps over 31,000 gyms and health clubs globally perform better and more profitably offering a comprehensive SaaS club management solution that enables club operators to achieve optimal performance. ABC Fitness is a Thoma Bravo portfolio company, a private equity firm focused on investing in software and technology companies (thomabravo.com). 

#LI-HYBRID 

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!