Graphic Designer

SENIOR INFORMATION SECURITY ENGINEER (DEVSECOPS)

Key Skills: Software Development Life Cycle (SDLC), CI/CD

About Company: Consumer Internet / E-Commerce

Company Size: Mid-Sized

Experience Required: 6 - 10 years

Working Days: 5 days/week

Office Location: Bengaluru [Karnataka]

Review Criteria:

Mandatory:

• Strong DevSecOps profile
• Must have 5+ years of hands-on experience in Information Security, with a primary focus on cloud security across AWS, Azure, and GCP environments.
• Must have strong practical experience working with Cloud Security Posture Management (CSPM) tools such as Prisma Cloud, Wiz, or Orca along with SIEM / IDS / IPS platforms
• Must have proven experience in securing Kubernetes and containerized environments including image security,runtime protection, RBAC, and network policies.
• Must have hands-on experience integrating security within CI/CD pipelines using tools such as Snyk, GitHub Advanced Security,or equivalent security scanning solutions.
• Must have solid understanding of core security domains including network security, encryption, identity and access management key management, and security governance including cloud-native security services like GuardDuty, Azure Security Center etc
• Must have practical experience with Application Security Testing tools including SAST, DAST, and SCA in real production environments
• Must have hands-on experience with security monitoring, incident response, alert investigation, root-cause analysis (RCA), and managing VAPT / penetration testing activities
• Must have experience securing infrastructure-as-code and cloud deployments using Terraform, CloudFormation, ARM, Docker, and Kubernetes
• B2B SaaS Product companies
• Must have working knowledge of globally recognized security frameworks and standards such as ISO 27001, NIST, and CIS with exposure to SOC2, GDPR, or HIPAA compliance environments

Preferred:

• Experience with DevSecOps automation, security-as-code, and policy-as-code implementations
• Exposure to threat intelligence platforms, cloud security monitoring, and proactive threat detection methodologies, including EDR / DLP or vulnerability management tools
• Must demonstrate strong ownership mindset, proactive security-first thinking, and ability to communicate risks in clear business language

Roles & Responsibilities:

We are looking for a Senior Information Security Engineer who can help protect our cloud infrastructure, applications, and data while enabling teams to move fast and build securely.

This role sits deep within our engineering ecosystem. You’ll embed security into how we design, build, deploy, and operate systems—working closely with Cloud, Platform, and Application Engineering teams. You’ll balance proactive security design with hands-on incident response, and help shape a strong, security-first culture across the organization.

If you enjoy solving real-world security problems, working close to systems and code, and influencing how teams build securely at scale, this role is for you.

What You’ll Do-

Cloud & Infrastructure Security:

• Design, implement, and operate cloud-native security controls across AWS, Azure, GCP, and Oracle.
• Strengthen IAM, network security, and cloud posture using services like GuardDuty, Azure Security Center and others.
• Partner with platform teams to secure VPCs, security groups, and cloud access patterns.

Application & DevSecOps Security:

• Embed security into the SDLC through threat modeling, secure code reviews, and security-by-design practices.
• Integrate SAST, DAST, and SCA tools into CI/CD pipelines.
• Secure infrastructure-as-code and containerized workloads using Terraform, CloudFormation, ARM, Docker, and Kubernetes.

Security Monitoring & Incident Response:

• Monitor security alerts and investigate potential threats across cloud and application layers.
• Lead or support incident response efforts, root-cause analysis, and corrective actions.
• Plan and execute VAPT and penetration testing engagements (internal and external), track remediation, and validate fixes.
• Conduct red teaming activities and tabletop exercises to test detection, response readiness, and cross-team coordination.
• Continuously improve detection, response, and testing maturity.

Security Tools & Platforms:

• Manage and optimize security tooling including firewalls, SIEM, EDR, DLP, IDS/IPS, CSPM, and vulnerability management platforms.
• Ensure tools are well-integrated, actionable, and aligned with operational needs.

Compliance, Governance & Awareness:

• Support compliance with industry standards and frameworks such as SOC2, HIPAA, ISO 27001, NIST, CIS, and GDPR.
• Promote secure engineering practices through training, documentation, and ongoing awareness programs.
• Act as a trusted security advisor to engineering and product teams.

Continuous Improvement:

• Stay ahead of emerging threats, cloud vulnerabilities, and evolving security best practices.
• Continuously raise the bar on a company's security posture through automation and process improvement.

Endpoint Security (Secondary Scope):

• Provide guidance on endpoint security tooling such as SentinelOne and Microsoft Defender when required.

Ideal Candidate:

• Strong hands-on experience in cloud security across AWS and Azure.
• Practical exposure to CSPM tools (e.g., Prisma Cloud, Wiz, Orca) and SIEM / IDS / IPS platforms.
• Experience securing containerized and Kubernetes-based environments.
• Familiarity with CI/CD security integrations (e.g., Snyk, GitHub Advanced Security, or similar).
• Solid understanding of network security, encryption, identity, and access management.
• Experience with application security testing tools (SAST, DAST, SCA).
• Working knowledge of security frameworks and standards such as ISO 27001, NIST, and CIS.
• Strong analytical, troubleshooting, and problem-solving skills.

Nice to Have:

• Experience with DevSecOps automation and security-as-code practices.
• Exposure to threat intelligence and cloud security monitoring solutions.
• Familiarity with incident response frameworks and forensic analysis.
• Security certifications such as CISSP, CISM, CCSP, or CompTIA Security+.

Perks, Benefits and Work Culture:

A wholesome opportunity in a fast-paced environment that will enable you to juggle between concepts, yet maintain the quality of content, interact and share your ideas and have loads of learning while at work. Work with a team of highly talented young professionals and enjoy the comprehensive benefits that company offers.

Company Cashflo

Salary: Upto 60LPA

ESOPs

Exp: 5-8Y

We are looking for someone who loves a challenge, is ambitious, super tenacious, and

persistent. S/he is a self-starter, thrives in a dynamic, small start-up environment, has a knack for

understanding customer needs, and loves to get sh*t done! If you check these boxes - we want

to talk to you!

Responsibilities:

Work closely with the Founder/CEO and to define and build the CashFlo platform

Identify customer problems, and latent needs & devise a product roadmap

Communicate and evangelize product output through low-fidelity designs

Collaborate with Sales and Customer Success to understand and eliminate obstacles to

adoption and usage

Work with Marketing to bring new features to life on various communication touchpoints

Collaborate with engineers and designers to arrive at detailed solutions to problems

Execute

Own the roadmap for one or more parts of the product

Work with engineering and design to plan launch scope

Together with engineering and design, break-down scope into launch iterations

Deliver product features as per timelines

Requirements:

Strong communication (written & verbal) and interpersonal skills

You should have worked at a startup or started your own company that shipped a product

An engineering / technical background that will allow you to reason about product

trade-offs and make good choices without significant input from engineers

At least 5 years of experience in a Product Management role

Attention to detail - great products are all about the details

Passion for getting the job done - A combination of grit, hustle and problem-solving skills

to deliver results on time

Prior exposure to the Fintech landscape and understanding of trends in financial services

About Astra:

Astra is a cyber security SaaS company that makes otherwise chaotic pentests a breeze with its one of a kind Pentest Platform. Astra's continuous vulnerability scanner emulates hacker behavior to scan applications for 9300+ security tests. CTOs & CISOs love Astra because it helps them fix vulnerabilities in record time and move from DevOps to DevSecOps with Astra's CI/CD integrations.

Astra is loved by 650+ companies across the globe. In 2023 Astra uncovered 2 million+ vulnerabilities for its customers, saving customers $69M+ in potential losses due to security vulnerabilities. 

We've been awarded by the President of France Mr. François Hollande at the La French Tech program and Prime Minister of India Shri Narendra Modi at the Global Conference on Cyber Security. Loom, MamaEarth, Muthoot Finance, Canara Robeco, ScripBox etc. are a few of Astra’s customers.

Role Overview:

As a back-end engineer you will be responsible for developing and maintaining the platform/dashboard backend. This would involve developing & maintaining RESTful services for vulnerability management, scan orchestration, inventory management and platform features such as on-boarding, trust centers, certificates, payment integrations, vulnerability ingestion, authentication etc. 

You should have a strong background in backend programming (Symfony preferred, or Laravel) and have experience with an event driven, async & distributed architecture. 

During the first 6 months of your role, you will be involved in the 0->1 journey of two of our upcoming products in our platform along with the respective product owners.

Love solving hard problems? Want to build high impact products rooted in first principles? Is coding your poetry? Join us in shaping the future of cyber security.

Roles & Responsibilities

• Design, develop, and maintain backend services and APIs using Symfony PHP framework. What you create is also what you own.
• Collaborate with front-end developers to integrate user-facing elements with server-side logic.
• Collaborate with scanner teams to orchestrate scans, ingest vulnerabilities, configure scanners etc.
• Write clean, well-documented, and efficient code.
• Optimize and refactor existing code to improve performance and reliability.
• Implement security and data protection measures.
• Triage, troubleshoot and upgrade existing systems.
• Ship code to production multiple times a day/week.
• Ensure timely delivery of the features.
• Test your own features, and write test cases for continuous automated testing.
• Participate in code reviews and contribute to best practices and standards.

What we are looking for:

• 3 years experience in a similar role or similar working experience.
• Strong background in PHP backend programming. Symfony preferred, or Laravel.
• Strong understanding of software architecture principles and design patterns.
• Experience with an event driven (subscribers/listeners), async (MessageHandlers & job queues) & distributed (load-balanced) architecture.
• Experience with PostgreSQL database and data modeling.
• Understanding of concepts such as Dependency Injection, ORM, data validation, error handling etc.
• Experience with Docker, Kubernetes, GitHub Actions (good to have).
• Experience with Agile methodologies.
• Excellent problem-solving skills and the ability to think strategically about technical solutions.
• Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional remote teams.
• Demonstrated track record of delivering high-quality software products on schedule.
• Knowledge of industry best practices in software development, security, and compliance.
• Knowledge of application & infrastructure security - helps you stand out. 

What We offer:

• Adrenalin rush of being a part of a fast-growing company, and working on hard problems that matter.
• Fully remote, agile working environment.
• Good engineering culture with full ownership in design, development, release lifecycle.
• A wholesome opportunity where you get to build things from scratch, improve and ship code to production in hours, not weeks.
• Holistic understanding of SaaS and enterprise security business.
• Experience with the security side of things.
• Annual trips to beaches or mountains (next one is to Wayanad).
• Open and supportive culture.
• Health insurance & other benefits for you and your spouse. Maternity benefits included.

To prepare placement students with the technical knowledge, skills, and confidence required to succeed in campus recruitment drives, technical interviews, and entry-level job roles in the industry.

About the company:

Our client is a luxury home décor brand. It's nothing less than a revolution in the home décor industry- where technology enables world-class home interior design. We use technology combined with internationally trained designers to help our customers achieve the style they want to express.

Our services include unique technology-driven processes and analytics, consulting, execution, and supervision – all within schedule and planned budget, so they can relax and enjoy their space transformation with peace of mind.

We encourage our consumers to explore and discover their own self-expression while amazing their senses with new cultures and design techniques, tasteful décor, and ambiance.

What would you be required to do?

•Collaborate with the leadership team to formulate and execute the design strategy for the organization

•Collaborate with external as well internal stakeholders from time to time and ensure DQphilosophy is aligned with the processes followed

•Be responsible for the projects seen as potential and ongoing in terms of quality, timelines, and aesthetics of design as per DQ philosophy

•Take the time to understand client style and need and merge that with DQ design philosophy in a creatively unique way each time for each different project

•Create and present design solutions as per the process

•Ensure that the client enjoys the home renovation process as that is one of the USP’sof DQ

•Create estimates, schedules, and staffing plans to complete projects

•Use software to design, sketch, and provide drawings of proposed projects when needed

•Work with clients to define project requirements and develop design criteria

•Provide support and guidance to clients on the newest trends in home décor and design

What skills are we looking for?

•Excellent taste in home design

•An uncompromising passion for beauty in the process of home renovation and décor

•Excellent communication skills- written and verbal

•Excellent interpersonal, negotiation, and creative thinking skills

•Excellent ability to influence

Who qualifies?

•At least 5+ years experience as an architect or interior designer in a luxury residential space (consultations, renovations, space planning, and new constructions). Entrepreneurship experience will be an added advantage

•MBA/ Diploma or Degree in Interior Designing or Architecture preferably from a foreign University with international experience

•Handled luxury projects of Rs. 10,000 – 12,000 per sq ft

•Space Planning

•Influence and client engagement skills

•Able to create material, furniture boards home models

•Good communicator, able to deal firmly and fairly with contractors, consultants, and vendors

•Developing concepts & sketches by virtue of Expertise in layout, color, lighting, materials selection, custom furniture, and all installations

•MBA / B.Arch / Diploma in Interior Designing preferably from a foreign University with international experience

•Must Know all state of art Software

Or

•The fact that this role and our organization excites you and you think you will be a good fit.

• Designing and developing user interfaces using angularJS best practices.
• Adapting interface for modern internet applications using the latest front-end technologies.
• Writing JavaScript, CSS, and HTML.
• Developing product analysis tasks.
• Making complex technical and design decisions for AngularJS projects.
• Developing application codes and unit tests in AngularJS, Java Technologies, and Rest Web Services.
• Conducting performance tests.
• Consulting with the design team.
• Ensuring high performance of applications and providing support.