fbpx

Director - App Security

SKU 2543 Categories ,
Location

Mumbai

Technical area

YoE

, , , , ,

HQ Location

Company Name

Company Size

Description

Technology @Dream11:Our Tech Team is the core of Dream11?s mobile-first cross-platform (Android & iOS, Mobile + Desktop PWA) product, serving more than 10 Crore users with over 70 million rpm (requests per minute) at peak with user concurrency of 5.5 million. Our tech stack is hosted on AWS and comprises multiple distributed systems like Cassandra, Aerospike, Akka, Voltdb, Ignite etc.
We have around 100+ micro-services primarily written in Java backed by vert.x framework. They serve isolated product features with discrete architectures to serve the respective use-cases. We have a completely in-house data infrastructure built on top of Kafka, Redshift, Spark, Druid etc. which powers our Machine Learning and Predictive Analytics use-cases. We ingress Terabytes of Data every day, which flows all over our Data pipelines to power a plethora of use-cases.
To know more about Dream11 Tech, visit here.
Security Engineering @Dream11:?Security First??is the principle on which Dream11 Engineering is based at. Secure SDLC is ingrained into the process and religiously followed upon. Dream11 Security team takes care of all aspects of Application, Cloud and Data/Enterprise Security working as a close knit team. It strongly believes in automating everything that can be. The team strives all the time to have Infrastructure / Configuration as a Code paradigm.Your Role:Setting up process/policies/controls/standards to meet state-of-the-art security framework and compliances
Reviewing application security and approve application integrations/feature roll-outs/updates
Understanding complex technical and architectural issues from the security perspective
Performing manual/automated application Vulnerability Assessment & Penetration Testing
Integrating business scenario use-cases in the application security framework
Managing technical documentation including VAPT/Application Security tracking and reporting
Focusing highly on automation-first strategy
Leading all internal and external stakeholder management
Must Have:7+ years of experience in web and mobile application security with Secure Software Development Life Cycle (SDLC)
Proficient in manual and automated penetration testing methods/tools
Hands-on experience in any of the programming languages (Python, Java, GoLang, NodeJS, etc.)
Configured and managed Web Application Firewalls (WAF)
Managed secure code review with all stakeholders (DAST & SAST)
Good to Have:Knowledge of any cloud based platform like AWS, GCP etc.
Security understanding of database technologies
Proven experience in managing Responsible Vulnerability Disclosure Programme (RVDP)
Participated in Bug Bounties & Capture The Flag (CTF)
Strong understanding of application design and architecture
About Dream Sports:Dream Sports, world?s largest fantasy sports platform, FanCode, a sports accelerator, DreamSetGo, a payment solutions provider. It has founded the Dream Sports Foundation, the nodal body for the Fantasy Sports industry in India.
Founded in 2008 by Harsh Jain and Bhavit Sheth, Dream Sports is always working on its mission to ?Make Sports Better??and is located in Mumbai. Dream Sports has been featured in the Top 10 ?Great Places to Work??in India every year since 2018, by the Great Place to Work??Institute, in the mid-sized company category.
For more information: https://dreamsports.group/

Download Zigup app to

Explore more features​

Available on Play Store & App Store

Addtional features on Zigup app:

Available on Play Store & App Store

product company jobs - Download Zigup available at Play Store and Appstore

Download Zigup app to

Get referrals for
Top companies

Addtional features on Zigup app:

Available on Play Store & App Store

Filter by jobs

Location
Technical Area

Filter by companies

HQ Location