fbpx

Lead Product Security Engineer

SKU 3025 Categories ,
Location

Bangalore

Technical area

YoE

, , , , ,

HQ Location

Company Name

Company Size

Description

About the Role
Fasten your helmet and climb on board if you?™re ready to be our next Lead Product Security Engineer. In this role, you will be the go-to expert in one or more information security disciplines with the expertise and wide understanding of security architecture, processes, alignment to stakeholder teams, and accountability for effective measurement of security metrics. You will be leading and executing large and technically complex security projects and initiatives and readily lead delivery teams of 4-6 security engineers. We, at Gojek, believe that Security is EVERYONE’s responsibility and you will be holding the reigns to promote and lead ”Security by Design” principles at Gojek.

What You Will Do

Participate in the development of a small to medium complexity security project, process, or initiative within your technical focus area (i.e. cloud security, identity access management, vulnerability management, penetration testing)
Design, develop, and maintain small to medium complexity security features and/or process changes with some guidance from more experienced team members
Scope activities from functional security assignments from senior team members or manager
Improve security operations by enhancing use cases, processes, and/or code structure
Implement medium complexity security tasks for projects and delivers concise and clear deliverables
Contribute to automation of repeated manual tasks to improve team productivity
Collaborate in security reviews that follow the standards and practices of information security best practices recognized by your team members

What You Will Need

At least 8 years of relevant industry experience
Strong acumen and understanding of tech architecture for cloud-native and microservices based web and mobile applications
Ability to drive security automation and DevSecOps within engineering life cycle, as well as vulnerability/bug remediation through calibration and filtering false positives
Experience in using manual and automated scanners like Nessus, Nexpose, Qualysguard, nmap, OpenVAS, Nexpose, and PT kits like Kali Linux, Metasploit
In-depth understanding of at least 3 security domains: application, network, identity access management, vulnerability management, incident response, encryption, remote access
Mandatory certification CISSP / OSCP / CEH
Desirable certifications: CSSLP, LPT, SANS-GPEN, SABSA

About the TeamGojek’s Information Security team is a group of 70+ security engineers based primarily out of Bengaluru, Singapore, and Indonesia. The Product Security team, a sub-pod of the InfoSec team at Gojek, helps ensure that all applications, products, services, and platforms are being developed with adequate control measures to avoid security breaches, fraud, or abuse. To achieve this, we closely work with our product engineers and build secure software deployed within our cloud infrastructure. Additionally, we run the Gojek bug bounty programs and provide product security incident response capabilities.Our mission is to enable Gojek engineering teams to build secure software while providing them the appropriate security context to make decisions and ultimately make Gojek the most trusted and safest platform to transact, eat, travel, and have fun ?˜ŠAs a team, we are concerned with the growth and safety of the company, and each other’s personal growth and well being too. With WFH becoming more normalized, you best believe we have been sharing our favorite ways to prioritize a healthy work-life balance at home. Along with our desire to utilize smart technology and innovative engineering strategies to make people’s lives easier, our team also bonds over our shared love for tea, and the latest movies & TV shows.

Download Zigup app to

Explore more features​

Available on Play Store & App Store

Addtional features on Zigup app:

Available on Play Store & App Store

product company jobs - Download Zigup available at Play Store and Appstore

Download Zigup app to

Explore more features

Addtional features on Zigup app:

Available on Play Store & App Store

Filter by jobs

Location
Technical Area

Filter by companies

HQ Location