Product Security Engineer - Remote
Bengaluru
Sprinto
Sprinto is a security compliance automation platform for fast-growing tech companies that want to move fast and win big.
Sprinto is a leading platform that automates information security compliance. By raising the bar on information security, Sprinto ensures compliance, healthy operational practices, and the ability for businesses to grow and scale with unwavering confidence. We are a team of 300+ employees & helping 2500+ Customers across 75+ Countries. We are funded by top investment partners Accel, Elevation, and Blume Ventures and have raised 31.8 million USD in funding, including our latest Series B round.
The Role We are looking for a Product Security Engineer to lead efforts in securing our products. This role involves integrating security into the SDLC, conducting threat assessments, and collaborating with engineering teams to ensure secure design and coding practices. You will also manage vulnerability remediation, ensure compliance, and educate teams on security best practices
The Role We are looking for a Product Security Engineer to lead efforts in securing our products. This role involves integrating security into the SDLC, conducting threat assessments, and collaborating with engineering teams to ensure secure design and coding practices. You will also manage vulnerability remediation, ensure compliance, and educate teams on security best practices
What you will do
- Secure SDLC Integration: Embed security into CI/CD pipelines and secure coding practices across development teams.
- Threat Modeling & Risk Assessments: Perform threat assessments and define mitigation strategies for new features.
- Application Security Audits: Conduct security reviews and vulnerability assessments for applications.
- Security Design Reviews: Provide feedback on product designs to ensure security is built in from the start.
- Vulnerability Management: Oversee vulnerability identification, prioritization, and remediation workflows.
- Cross-Functional Collaboration: Work closely with development teams to promote secure coding and operational practices.
What We’re Looking For
- 5–9 years in application security, product security, or related roles.
- Proficient in web application security (OWASP Top 10), secure coding practices, and vulnerability remediation.
- Hands-on experience with security tools (SAST/DAST) and securing cloud environments.
- Familiar with cloud security (AWS, Azure) and container security (Docker, Kubernetes).
- Strong understanding of compliance standards like SOC 2, ISO 27001, and GDPR..
Benefits
- Remote First Policy.
- 5 Days Working With FLEXI Hours.
- Group Medical Insurance (Parents, Spouse, Children).
- Group Accident Cover.
- Company Sponsored Device.
- Education Reimbursement Policy.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
4
1
0
Category:
Security Engineering Jobs
Tags: Application security Audits AWS Azure CI/CD Cloud Compliance DAST Docker GDPR ISO 27001 Kubernetes OWASP Product security Risk assessment SAST SDLC SOC SOC 2 Vulnerability management
Regions:
Remote/Anywhere
Asia/Pacific
Country:
India
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Product Security Engineer jobsSecurity Operations Engineer jobsSenior Security Analyst jobsSystems Administrator jobsSenior Cybersecurity Engineer jobsSenior Information Security Analyst jobsCybersecurity Editor jobsCybersecurity Content Editor jobsCyber Security Specialist jobsInformation Security Manager jobsIT Security Analyst jobsSenior Network Security Engineer jobsSenior Information Security Engineer jobsSenior Product Security Engineer jobsInformation System Security Officer (ISSO) jobsSecurity Consultant jobsChief Information Security Officer jobsIT Security Engineer jobsInformation Systems Security Engineer jobsSecurity Specialist jobsSenior Cyber Security Engineer jobsCyber Threat Intelligence Analyst jobsSenior Software Engineer jobsCybersecurity Specialist jobsSenior IT Auditor jobs
EDR jobsTS/SCI jobsJava jobsEncryption jobsCEH jobsSplunk jobsTop Secret jobsSDLC jobsIDS jobsThreat detection jobsTerraform jobsIPS jobsMalware jobsFinance jobsRMF jobsSQL jobsDocker jobsForensics jobsSOC 2 jobsActive Directory jobsIntrusion detection jobsCompTIA jobsOWASP jobsITIL jobsTCP/IP jobs
HIPAA jobsCRISC jobsGIAC jobsAnsible jobsClearance Required jobsVPN jobsDoDD 8570 jobsMITRE ATT&CK jobsIT infrastructure jobsOSCP jobsJira jobsData Analytics jobsSOAR jobsDNS jobsSOX jobsJavaScript jobsBanking jobsUNIX jobsCCSP jobsIndustrial jobsZero Trust jobsCISO jobsGCIH jobsArtificial Intelligence jobsSANS jobs