Application Security Engineer

With a core belief that advertising technology can measurably improve the lives of patients, DeepIntent is leading the healthcare advertising industry into the future. Built purposefully for the healthcare industry, the DeepIntent Healthcare Advertising Platform is proven to drive higher audience quality and script performance with patented technology and the industry’s most comprehensive health data. DeepIntent is trusted by 600+ pharmaceutical brands and all the leading healthcare agencies to reach the most relevant healthcare provider and patient audiences across all channels and devices. For more information, visit DeepIntent.com or find us on LinkedIn.

We are seeking a skilled and experienced Site Reliability Engineer (SRE) to join our dynamic team. The ideal candidate will have a minimum of 3 years of hands-on experience in managing and maintaining production systems, with a focus on reliability, scalability, and performance. As an SRE at Deepintent, you will play a crucial role in ensuring the stability and efficiency of our infrastructure, as well as contributing to the development of automation and monitoring tools.

Responsibilities:

• Deploy, configure, and maintain Kubernetes clusters for our microservices architecture.
• Utilize Git and Helm for version control and deployment management.
• Implement and manage monitoring solutions using Prometheus and Grafana.
• Work on continuous integration and continuous deployment (CI/CD) pipelines.
• Containerize applications using Docker and manage orchestration.
• Manage and optimize AWS services, including but not limited to EC2, S3, RDS, and AWS CDN.
• Maintain and optimize MySQL databases, Airflow, and Redis instances.
• Write automation scripts in Bash or Python for system administration tasks.
• Perform Linux administration tasks and troubleshoot system issues.
• Utilize Ansible and Terraform for configuration management and infrastructure as code.
• Demonstrate knowledge of networking and load-balancing principles.
• Collaborate with development teams to ensure applications meet reliability and performance standards.

Additional Skills (Good to Know):

• Familiarity with ClickHouse and Druid for data storage and analytics.
• Experience with Jenkins for continuous integration.
• Basic understanding of Google Cloud Platform (GCP) and data center operations.

Qualifications:

• Minimum 3 years of experience in a Site Reliability Engineer role or similar.
• Proven experience with Kubernetes, Git, Helm, Prometheus, Grafana, CI/CD, Docker, and microservices architecture.
• Strong knowledge of AWS services, MySQL, Airflow, Redis, AWS CDN.
• Proficient in scripting languages such as Bash or Python.
• Hands-on experience with Linux administration.
• Familiarity with Ansible and Terraform for infrastructure management.
• Understanding of networking principles and load balancing.

Education:

Bachelor's degree in Computer Science, Information Technology, or a related field.

DeepIntent is committed to bringing together individuals from different backgrounds and perspectives. We strive to create an inclusive environment where everyone can thrive, feel a sense of belonging, and do great work together.

DeepIntent is an Equal Opportunity Employer, providing equal employment and advancement opportunities to all individuals. We recruit, hire and promote into all job levels the most qualified applicants without regard to race, color, creed, national origin, religion, sex (including pregnancy, childbirth and related medical conditions), parental status, age, disability, genetic information, citizenship status, veteran status, gender identity or expression, transgender status, sexual orientation, marital, family or partnership status, political affiliation or activities, military service, immigration status, or any other status protected under applicable federal, state and local laws. If you have a disability or special need that requires accommodation, please let us know in advance.

DeepIntent’s commitment to providing equal employment opportunities extends to all aspects of employment, including job assignment, compensation, discipline and access to benefits and training.

Roles and Responsibilities:

• To Maintain the required uptime for Azure Cloud and IT Infrastructure.
• To provide earliest resolution of the reported issues, which may include but not limited to cloud &
• end user related issues.
• Configuring and managing the alerts through Nagios, which may include but not limited to
• scripting knowledge.
• Linux and Windows Server administration.
• Managing Firewalls and Domain Controllers.
• Timely delivery of the assigned tasks.

Requirements:

• Having relevant experience of 3-8 yrs.
• Sound knowledge of Linux & Windows System administration
• Good Hands-on experience on Cloud-AWS/Azure ( Willing to work on Azure Cloud )
• Good knowledge of networking, firewall & domain controller
• Basic knowledge of DevOps/Scripting
• Owning accountability and responsibility for end-to-end tasks

Job Responsibilities:

Experience: 8 Yrs to 12 Yrs

1. Hands-on expertise on performing Application pen testing (Mobile(Android, IOS),networking, web application pen testing),
2. Should worked on IOT,AWS,Application Penetration Testing, Reverse Engineering, source code review, CI/CD Pipeline
3. have done any submission on Bug crowd or Bug Bounty.
4. have developed tools or scripts for web pen test on GitHub.
5. Certified on OSCP
6. Threat Modeling
7. Network scan in stealth mode or simple scan using Nmap and Burp suite

Implement security measures which monitor and protect sensitive data and systems from infiltration and cyber-attacks.

Developing different ways to solve the existing threats and security issues.

Configuring and implementing intrusion detection systems and firewalls.

Security product development, testing, and implementation.

Responsible for security technology research, penetration testing, and vulnerability scanning.

Please follow the below inputs.

The shift will starts from 03:00 PM to 12 AM (fixed for few months),

OSCP certification(Not mandatory, preferable)

Below are the primary key skills:

Total Application Security Experience:

Total Security Architecture Experience:

IOT(optional)

MOBILE

WEB

AWS(Mandatory)

NETWORKING

THREAT MODELS

Who You Are

• Creative thinker and strong problem solver with meticulous attention to detail
• Highly organized, creative, motivated, and passionate about achieving results
• Able to balance multiple tasks and projects effectively and quickly adapt to new situations and technologies
• Able to work both independently and as part of a team
• Systematic problem-solver, coupled with a strong sense of ownership and drive

What you need

• 3-7 years of experience as a Site Reliability Engineer or a mix of a software engineer and DevOps.
• Strong hands-on knowledge of Linux fundamentals, System administration scripting, performance tuning/scalability, troubleshooting.
• Write great quality code using SOLID principles including unit and integration tests.
• Hands-on development experience in an object-orientated programming language like Python.
• Hands-on experience developing task automations
• Experience using tools to create and manage CI (continuous integration) and CD (continuous delivery) pipelines.
• Familiarity with software development tools: source code management (SCM systems), code review systems, issue tracking tools, build tools, test frameworks, code quality tools.
• Experience implementing open-source observability and alerting tools, like Prometheus, Grafana, Cortex, Thanos, Alertmanager etc
• Have decent knowledge on networking (VPC, VNet, DNS etc) and of the TCP/IP stack, internet routing and load balancing.
• Worked with log and configuration management tool
• Prior experience of working with AWS, Azure, GCP is a plus
• Prior experience of working with Kubernetes, Docker and containers is plus
• Strong interpersonal communication skills (including listening, speaking, and writing) and ability to work well in a diverse, team-focused environment with other SREs, Engineers, Product Managers, etc.
• Documenting your work should be in your DNA

What you get

• A chance to develop and build something (probably from scratch) which you can be proud of
• Build and Implement modern systems observability solutions including monitoring, alerting, metrics, logging, and APM & distributed tracing.
• Scale systems sustainably through automation and evolve systems by pushing for changes that improve reliability and velocity.
• Maintain business continuity by identifying and driving opportunities to make systems highly resilient and human-free.
• Closely work with the software engineering team to ensure accurate monitoring and metrics are being built into applications before going to production.
• Develop and maintain software modules for use and re-use in cloud and on-premise systems automation.
• Identify process gaps and implement process improvements to increase operational reliability
• Drive standardization efforts across the services, infrastructure, systems, and practices
• Develop Systems & Tools to help with Development team to uphold the Reliability principles

• You have 2+ years of experience with production GCP/AWS; Experience with Kubernetes is a plus
•  You have 3+ years debugging network and system security issues
• You have experience in developing security training and guide the internal development teams
• You design and implement best practices concerning information security
• You can create programs to implement Identity and Access Management
•  You have to evolve the bug bounty program and provide support.
• You have to develop automated security testing.
• You have worked on cloud-native technologies.
• You have to triage security issues and provide recommended fixes.
•  You are an excellent collaborator & communicator.
• You know that start-ups are a team sport.
• You listen to others, aren’t afraid to speak your mind and always try to ask the right questions.
• You are excited by the prospect of working in a distributed team and company.

Security Monitoring and Operations (SIEM)
Security Solutions design and deployment
IDAM - Identity and Access Management Experience
Network Monitoring and Management Experience
VAPT - Vulnerability Assessment and Penetration Assessment
Experience on DLP and Endpoint Security
Knowledge on Encryption 
Experience in performing Maturity Assessment for identifying the security gaps and recommending measures to fix the gaps
Experience in Audit controls and applying security measures (ISO, PCI etc..)
Knowledge in automation and scripting