Project Manager - Tech

SENIOR INFORMATION SECURITY ENGINEER (DEVSECOPS)

Key Skills: Software Development Life Cycle (SDLC), CI/CD

About Company: Consumer Internet / E-Commerce

Company Size: Mid-Sized

Experience Required: 6 - 10 years

Working Days: 5 days/week

Office Location: Bengaluru [Karnataka]

Review Criteria:

Mandatory:

• Strong DevSecOps profile
• Must have 5+ years of hands-on experience in Information Security, with a primary focus on cloud security across AWS, Azure, and GCP environments.
• Must have strong practical experience working with Cloud Security Posture Management (CSPM) tools such as Prisma Cloud, Wiz, or Orca along with SIEM / IDS / IPS platforms
• Must have proven experience in securing Kubernetes and containerized environments including image security,runtime protection, RBAC, and network policies.
• Must have hands-on experience integrating security within CI/CD pipelines using tools such as Snyk, GitHub Advanced Security,or equivalent security scanning solutions.
• Must have solid understanding of core security domains including network security, encryption, identity and access management key management, and security governance including cloud-native security services like GuardDuty, Azure Security Center etc
• Must have practical experience with Application Security Testing tools including SAST, DAST, and SCA in real production environments
• Must have hands-on experience with security monitoring, incident response, alert investigation, root-cause analysis (RCA), and managing VAPT / penetration testing activities
• Must have experience securing infrastructure-as-code and cloud deployments using Terraform, CloudFormation, ARM, Docker, and Kubernetes
• B2B SaaS Product companies
• Must have working knowledge of globally recognized security frameworks and standards such as ISO 27001, NIST, and CIS with exposure to SOC2, GDPR, or HIPAA compliance environments

Preferred:

• Experience with DevSecOps automation, security-as-code, and policy-as-code implementations
• Exposure to threat intelligence platforms, cloud security monitoring, and proactive threat detection methodologies, including EDR / DLP or vulnerability management tools
• Must demonstrate strong ownership mindset, proactive security-first thinking, and ability to communicate risks in clear business language

Roles & Responsibilities:

We are looking for a Senior Information Security Engineer who can help protect our cloud infrastructure, applications, and data while enabling teams to move fast and build securely.

This role sits deep within our engineering ecosystem. You’ll embed security into how we design, build, deploy, and operate systems—working closely with Cloud, Platform, and Application Engineering teams. You’ll balance proactive security design with hands-on incident response, and help shape a strong, security-first culture across the organization.

If you enjoy solving real-world security problems, working close to systems and code, and influencing how teams build securely at scale, this role is for you.

What You’ll Do-

Cloud & Infrastructure Security:

• Design, implement, and operate cloud-native security controls across AWS, Azure, GCP, and Oracle.
• Strengthen IAM, network security, and cloud posture using services like GuardDuty, Azure Security Center and others.
• Partner with platform teams to secure VPCs, security groups, and cloud access patterns.

Application & DevSecOps Security:

• Embed security into the SDLC through threat modeling, secure code reviews, and security-by-design practices.
• Integrate SAST, DAST, and SCA tools into CI/CD pipelines.
• Secure infrastructure-as-code and containerized workloads using Terraform, CloudFormation, ARM, Docker, and Kubernetes.

Security Monitoring & Incident Response:

• Monitor security alerts and investigate potential threats across cloud and application layers.
• Lead or support incident response efforts, root-cause analysis, and corrective actions.
• Plan and execute VAPT and penetration testing engagements (internal and external), track remediation, and validate fixes.
• Conduct red teaming activities and tabletop exercises to test detection, response readiness, and cross-team coordination.
• Continuously improve detection, response, and testing maturity.

Security Tools & Platforms:

• Manage and optimize security tooling including firewalls, SIEM, EDR, DLP, IDS/IPS, CSPM, and vulnerability management platforms.
• Ensure tools are well-integrated, actionable, and aligned with operational needs.

Compliance, Governance & Awareness:

• Support compliance with industry standards and frameworks such as SOC2, HIPAA, ISO 27001, NIST, CIS, and GDPR.
• Promote secure engineering practices through training, documentation, and ongoing awareness programs.
• Act as a trusted security advisor to engineering and product teams.

Continuous Improvement:

• Stay ahead of emerging threats, cloud vulnerabilities, and evolving security best practices.
• Continuously raise the bar on a company's security posture through automation and process improvement.

Endpoint Security (Secondary Scope):

• Provide guidance on endpoint security tooling such as SentinelOne and Microsoft Defender when required.

Ideal Candidate:

• Strong hands-on experience in cloud security across AWS and Azure.
• Practical exposure to CSPM tools (e.g., Prisma Cloud, Wiz, Orca) and SIEM / IDS / IPS platforms.
• Experience securing containerized and Kubernetes-based environments.
• Familiarity with CI/CD security integrations (e.g., Snyk, GitHub Advanced Security, or similar).
• Solid understanding of network security, encryption, identity, and access management.
• Experience with application security testing tools (SAST, DAST, SCA).
• Working knowledge of security frameworks and standards such as ISO 27001, NIST, and CIS.
• Strong analytical, troubleshooting, and problem-solving skills.

Nice to Have:

• Experience with DevSecOps automation and security-as-code practices.
• Exposure to threat intelligence and cloud security monitoring solutions.
• Familiarity with incident response frameworks and forensic analysis.
• Security certifications such as CISSP, CISM, CCSP, or CompTIA Security+.

Perks, Benefits and Work Culture:

A wholesome opportunity in a fast-paced environment that will enable you to juggle between concepts, yet maintain the quality of content, interact and share your ideas and have loads of learning while at work. Work with a team of highly talented young professionals and enjoy the comprehensive benefits that company offers.

Responsibilities

- To analysis business requirements, prepare design and implementation recommendations and estimate development effort

- Collaborate with cross-functional teams to define, design, and ship new features

- Lead or participate in design reviews, code reviews and architecture evolution discussions

- Unit-test code for robustness, including edge cases, usability, and general reliability

- Work on bug fixing and improving application performance

- Continuously discover, evaluate, and implement new technologies to maximize development efficiency

Required Skills

- Experienced with front end programming language with React JS.

- Strong proficiency in JavaScript, including DOM manipulation and the JavaScript object model.

- Thorough understanding of React.js and its core principles.

- Experience with popular React.JS workflows (such as Flux or Redux)

-Expereince on .Net Core

-Experience in database MS SQL

Job description

We are on the lookout for a skilled and motivated Full-Stack Developer to join our team in a fully remote capacity. As a Full-Stack Developer, you will play a crucial role in developing and maintaining user-friendly, responsive web applications. Join us in creating innovative solutions and collaborating with cross-functional teams to design and implement exceptional user interfaces.

Qualifications:

• Strong proficiency in HTML, CSS, JavaScript, and front-end frameworks/libraries (Angular, React, Vue.js).
• Experience with responsive design, web performance optimization, and cross-browser compatibility.
• Knowledge of web development best practices, accessibility standards, and version control (Git).
• Experience working with APIs and integrating with back-end systems/services.
• Bachelor's degree or higher in Computer Science, or a related field, or equivalent work experience.
• Excellent communication and teamwork skills, with the ability to collaborate effectively in a remote work environment.
• Experience with TypeScript, SASS/LESS, and/or Node.js is a plus.

Responsibilities:

> Collaborate on high-quality web applications using PHP (Laravel) and frontend frameworks like ReactJS/VueJS.

> Assist in designing secure RESTful APIs and conduct API testing with tools like Postman.

> Contribute to test case creation and maintenance (PHPUnit/FeatureUnit).

Work within an Agile environment, participating in sprint activities.

#Requirements:

> 1 to 2 years of Full Stack development experience with a focus on PHP (Laravel).

> Strong understanding of RESTful API design and frontend technologies.

> Excellent communication skills and ability to work collaboratively in a team.

> Familiarity with version control (Git) and JIRA software.

> Analytical mindset and problem-solving skills.

> Experience with 3rd party integrations and payment gateways.

#Experience_ Required : 1 to 2 Years

#Location : Indore (WFO)

• Mosaic Wellness is looking for an Android developer responsible for the development and maintenance of existing applications along with continuous integration of new features, who can take the ownership and work independently.
• 1.5+ years of experience in Kotlin is must 
• Your primary focus will be development of Android applications and their integration with back-end services. You will be working alongside other engineers and developers working on different layers of the infrastructure.
• Therefore, a commitment to collaborative problem solving, sophisticated design, and the creation of quality products is essential.
  

• Integrate the design into high-quality code.
• Ensure the performance, quality, and responsiveness of an application.
• Identify and correct bottlenecks and fix bugs.
• Work along-side other developers working on a different platform for the Application. Therefore, commitment to collaborative problem solving, design implementation and creating a quality product is essential.
  

• Minimum 2+ years of experience in Android Application Development.
• Strong knowledge of Android SDK, different versions of Android, and how to deal with different screen sizes.
• Understanding of Android design principles and interface guidelines.
• Must have already deployed at least one app on PlayStore.
• Working knowledge of Web Services & REST (JSON) APIs, Websocket, Kotlin, Retrofit, SQLite, Google API Integration, Firebase.
• Familiarity with cloud message APIs and push notifications.
• Experience with third-party libraries and APIs.
• Strong mobile UI design and implementation experience.
• Experience with the E-commerce store app
  
• Understanding of code versioning tools.

➢    Expert in React JS with about 4 years of experience

➢    Experience in using libraries like D3, Material UI, style sheets and theme management

➢    Should be able to understand requirements & design, develop efficient React JS Code, should have used tools to automate the test and deployment to production

➢    Should have good knowledge on REST APIs, Error handling and writing Unit and Integration Tests

➢    Knowledge of Java is desirable

Responsibilities

➢    Understand the Visual Designs, Functional Requirements and come up with the design/components needed to build the user interface.

➢    Work with Visual Designers to understand the graphic design patterns, themes, and implement in a structured way in the product front end

➢    Work with server side microservices team to develop the JSON contracts

➢    Develop efficient React JS code to implement these requirements

➢    Automate the testing and deployment of these components to production