Product Security Engineer - Remote
Bengaluru
ā ļø We'll shut down after Aug 1st - try fooš¦ for all jobs in tech ā ļø
Sprinto
Sprinto is a security compliance automation platform for fast-growing tech companies that want to move fast and win big.
SprintoĀ is a leading platform that automates information security compliance. By raising the bar on information security, Sprinto ensures compliance, healthy operational practices, and the ability for businesses to grow and scale with unwavering confidence. We are a team ofĀ 300+ employeesĀ & helping 2500+ CustomersĀ acrossĀ 75+ Countries. We are funded by top investment partnersĀ Accel, Elevation,Ā andĀ Blume VenturesĀ and have raisedĀ 31.8 million USDĀ in funding, including our latestĀ Series BĀ round.
The Role We are looking for a Product Security Engineer to lead efforts in securing our products. This role involves integrating security into the SDLC, conducting threat assessments, and collaborating with engineering teams to ensure secure design and coding practices. You will also manage vulnerability remediation, ensure compliance, and educate teams on security best practices
The Role We are looking for a Product Security Engineer to lead efforts in securing our products. This role involves integrating security into the SDLC, conducting threat assessments, and collaborating with engineering teams to ensure secure design and coding practices. You will also manage vulnerability remediation, ensure compliance, and educate teams on security best practices
What you will do
- Secure SDLC Integration: Embed security into CI/CD pipelines and secure coding practices across development teams.
- Threat Modeling & Risk Assessments: Perform threat assessments and define mitigation strategies for new features.
- Application Security Audits: Conduct security reviews and vulnerability assessments for applications.
- Security Design Reviews: Provide feedback on product designs to ensure security is built in from the start.
- Vulnerability Management: Oversee vulnerability identification, prioritization, and remediation workflows.
- Cross-Functional Collaboration: Work closely with development teams to promote secure coding and operational practices.
What Weāre Looking For
- 5ā9 years in application security, product security, or related roles.
- Proficient in web application security (OWASP Top 10), secure coding practices, and vulnerability remediation.
- Hands-on experience with security tools (SAST/DAST) and securing cloud environments.
- Familiar with cloud security (AWS, Azure) and container security (Docker, Kubernetes).
- Strong understanding of compliance standards like SOC 2, ISO 27001, and GDPR..
Benefits
- Remote First Policy.
- 5 Days Working With FLEXI Hours.
- Group Medical Insurance (Parents, Spouse, Children).
- Group Accident Cover.
- Company Sponsored Device.
- Education Reimbursement Policy.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index š°
Job stats:
10
3
0
Category:
Security Engineering Jobs
Tags: Application security Audits AWS Azure CI/CD Cloud Compliance DAST Docker GDPR ISO 27001 Kubernetes OWASP Product security Risk assessment SAST SDLC SOC SOC 2 Vulnerability management
Regions:
Remote/Anywhere
Asia/Pacific
Country:
India
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Senior Cloud Security Engineer jobsSystems Engineer jobsSenior Information Security Analyst jobsSenior Cybersecurity Engineer jobsSystems Administrator jobsSenior Security Analyst jobsSecurity Operations Engineer jobsCyber Security Specialist jobsSenior Product Security Engineer jobsInformation System Security Officer (ISSO) jobsInformation Security Manager jobsSenior Information Security Engineer jobsSecurity Specialist jobsSenior Network Security Engineer jobsSecurity Consultant jobsInformation Systems Security Engineer jobsChief Information Security Officer jobsSenior Cyber Security Engineer jobsIT Security Engineer jobsSenior Software Engineer jobsCyber Threat Intelligence Analyst jobsNetwork Engineer jobsSenior IT Auditor jobsCybersecurity Specialist jobsSecurity Operations Analyst jobs
Security assessment jobsEncryption jobsBash jobsJava jobsTS/SCI jobsRMF jobsSDLC jobsThreat detection jobsITIL jobsTerraform jobsIDS jobsSplunk jobsSQL jobsCompTIA jobsMalware jobsTop Secret jobsDocker jobsIPS jobsForensics jobsOWASP jobsFinance jobsActive Directory jobsGIAC jobsSOC 2 jobsClearance Required jobs
OSCP jobsCRISC jobsMITRE ATT&CK jobsDoDD 8570 jobsHIPAA jobsTCP/IP jobsIntrusion detection jobsVPN jobsCCSP jobsSOAR jobsZero Trust jobsDNS jobsIT infrastructure jobsJavaScript jobsAnsible jobsNIST 800-53 jobsIndustrial jobsKPIs jobsMachine Learning jobsBanking jobsUNIX jobsGCIH jobsData Analytics jobsSANS jobsSOX jobs