Product Security Engineer - Remote
Bengaluru
Sprinto
Sprinto is a security compliance automation platform for fast-growing tech companies that want to move fast and win big.
SprintoĀ is a leading platform that automates information security compliance. By raising the bar on information security, Sprinto ensures compliance, healthy operational practices, and the ability for businesses to grow and scale with unwavering confidence. We are a team ofĀ 300+ employeesĀ & helping 2500+ CustomersĀ acrossĀ 75+ Countries. We are funded by top investment partnersĀ Accel, Elevation,Ā andĀ Blume VenturesĀ and have raisedĀ 31.8 million USDĀ in funding, including our latestĀ Series BĀ round.
The Role We are looking for a Product Security Engineer to lead efforts in securing our products. This role involves integrating security into the SDLC, conducting threat assessments, and collaborating with engineering teams to ensure secure design and coding practices. You will also manage vulnerability remediation, ensure compliance, and educate teams on security best practices
The Role We are looking for a Product Security Engineer to lead efforts in securing our products. This role involves integrating security into the SDLC, conducting threat assessments, and collaborating with engineering teams to ensure secure design and coding practices. You will also manage vulnerability remediation, ensure compliance, and educate teams on security best practices
What you will do
- Secure SDLC Integration: Embed security into CI/CD pipelines and secure coding practices across development teams.
- Threat Modeling & Risk Assessments: Perform threat assessments and define mitigation strategies for new features.
- Application Security Audits: Conduct security reviews and vulnerability assessments for applications.
- Security Design Reviews: Provide feedback on product designs to ensure security is built in from the start.
- Vulnerability Management: Oversee vulnerability identification, prioritization, and remediation workflows.
- Cross-Functional Collaboration: Work closely with development teams to promote secure coding and operational practices.
What Weāre Looking For
- 5ā9 years in application security, product security, or related roles.
- Proficient in web application security (OWASP Top 10), secure coding practices, and vulnerability remediation.
- Hands-on experience with security tools (SAST/DAST) and securing cloud environments.
- Familiar with cloud security (AWS, Azure) and container security (Docker, Kubernetes).
- Strong understanding of compliance standards like SOC 2, ISO 27001, and GDPR..
Benefits
- Remote First Policy.
- 5 Days Working With FLEXI Hours.
- Group Medical Insurance (Parents, Spouse, Children).
- Group Accident Cover.
- Company Sponsored Device.
- Education Reimbursement Policy.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index š°
Job stats:
8
3
0
Category:
Security Engineering Jobs
Tags: Application security Audits AWS Azure CI/CD Cloud Compliance DAST Docker GDPR ISO 27001 Kubernetes OWASP Product security Risk assessment SAST SDLC SOC SOC 2 Vulnerability management
Regions:
Remote/Anywhere
Asia/Pacific
Country:
India
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information System Security Officer jobsIT Security Analyst jobsSecurity Operations Engineer jobsSenior Cybersecurity Engineer jobsSenior Cloud Security Engineer jobsSenior Security Analyst jobsSenior Information Security Analyst jobsCyber Security Specialist jobsInformation Security Manager jobsSenior Product Security Engineer jobsSenior Network Security Engineer jobsSecurity Consultant jobsSenior Information Security Engineer jobsInformation System Security Officer (ISSO) jobsChief Information Security Officer jobsInformation Systems Security Engineer jobsSecurity Specialist jobsSenior Cyber Security Engineer jobsIT Security Engineer jobsCyber Threat Intelligence Analyst jobsSecurity Operations Analyst jobsSenior Software Engineer jobsSenior IT Auditor jobsCybersecurity Specialist jobsNetwork Engineer jobs
Bash jobsCEH jobsTS/SCI jobsEncryption jobsEDR jobsSDLC jobsSplunk jobsThreat detection jobsMalware jobsRMF jobsTerraform jobsFinance jobsIDS jobsSQL jobsTop Secret jobsCompTIA jobsForensics jobsITIL jobsIPS jobsSOC 2 jobsOWASP jobsActive Directory jobsDocker jobsClearance Required jobsGIAC jobs
CRISC jobsIntrusion detection jobsTCP/IP jobsOSCP jobsAnsible jobsHIPAA jobsVPN jobsMITRE ATT&CK jobsDoDD 8570 jobsZero Trust jobsData Analytics jobsJavaScript jobsSOAR jobsCCSP jobsSOX jobsBanking jobsIT infrastructure jobsJira jobsUNIX jobsDNS jobsIndustrial jobsNIST 800-53 jobsKPIs jobsCISO jobsMachine Learning jobs