
Senior Information Security Engineer (DevSecOps)
at E-Commerce Industry
SENIOR INFORMATION SECURITY ENGINEER (DEVSECOPS)
Key Skills: Software Development Life Cycle (SDLC), CI/CD
About Company: Consumer Internet / E-Commerce
Company Size: Mid-Sized
Experience Required: 6 - 10 years
Working Days: 5 days/week
Office Location: Bengaluru [Karnataka]
Review Criteria:
Mandatory:
- Strong DevSecOps profile
- Must have 5+ years of hands-on experience in Information Security, with a primary focus on cloud security across AWS, Azure, and GCP environments.
- Must have strong practical experience working with Cloud Security Posture Management (CSPM) tools such as Prisma Cloud, Wiz, or Orca along with SIEM / IDS / IPS platforms
- Must have proven experience in securing Kubernetes and containerized environments including image security,runtime protection, RBAC, and network policies.
- Must have hands-on experience integrating security within CI/CD pipelines using tools such as Snyk, GitHub Advanced Security,or equivalent security scanning solutions.
- Must have solid understanding of core security domains including network security, encryption, identity and access management key management, and security governance including cloud-native security services like GuardDuty, Azure Security Center etc
- Must have practical experience with Application Security Testing tools including SAST, DAST, and SCA in real production environments
- Must have hands-on experience with security monitoring, incident response, alert investigation, root-cause analysis (RCA), and managing VAPT / penetration testing activities
- Must have experience securing infrastructure-as-code and cloud deployments using Terraform, CloudFormation, ARM, Docker, and Kubernetes
- B2B SaaS Product companies
- Must have working knowledge of globally recognized security frameworks and standards such as ISO 27001, NIST, and CIS with exposure to SOC2, GDPR, or HIPAA compliance environments
Preferred:
- Experience with DevSecOps automation, security-as-code, and policy-as-code implementations
- Exposure to threat intelligence platforms, cloud security monitoring, and proactive threat detection methodologies, including EDR / DLP or vulnerability management tools
- Must demonstrate strong ownership mindset, proactive security-first thinking, and ability to communicate risks in clear business language
Roles & Responsibilities:
We are looking for a Senior Information Security Engineer who can help protect our cloud infrastructure, applications, and data while enabling teams to move fast and build securely.
This role sits deep within our engineering ecosystem. You’ll embed security into how we design, build, deploy, and operate systems—working closely with Cloud, Platform, and Application Engineering teams. You’ll balance proactive security design with hands-on incident response, and help shape a strong, security-first culture across the organization.
If you enjoy solving real-world security problems, working close to systems and code, and influencing how teams build securely at scale, this role is for you.
What You’ll Do-
Cloud & Infrastructure Security:
- Design, implement, and operate cloud-native security controls across AWS, Azure, GCP, and Oracle.
- Strengthen IAM, network security, and cloud posture using services like GuardDuty, Azure Security Center and others.
- Partner with platform teams to secure VPCs, security groups, and cloud access patterns.
Application & DevSecOps Security:
- Embed security into the SDLC through threat modeling, secure code reviews, and security-by-design practices.
- Integrate SAST, DAST, and SCA tools into CI/CD pipelines.
- Secure infrastructure-as-code and containerized workloads using Terraform, CloudFormation, ARM, Docker, and Kubernetes.
Security Monitoring & Incident Response:
- Monitor security alerts and investigate potential threats across cloud and application layers.
- Lead or support incident response efforts, root-cause analysis, and corrective actions.
- Plan and execute VAPT and penetration testing engagements (internal and external), track remediation, and validate fixes.
- Conduct red teaming activities and tabletop exercises to test detection, response readiness, and cross-team coordination.
- Continuously improve detection, response, and testing maturity.
Security Tools & Platforms:
- Manage and optimize security tooling including firewalls, SIEM, EDR, DLP, IDS/IPS, CSPM, and vulnerability management platforms.
- Ensure tools are well-integrated, actionable, and aligned with operational needs.
Compliance, Governance & Awareness:
- Support compliance with industry standards and frameworks such as SOC2, HIPAA, ISO 27001, NIST, CIS, and GDPR.
- Promote secure engineering practices through training, documentation, and ongoing awareness programs.
- Act as a trusted security advisor to engineering and product teams.
Continuous Improvement:
- Stay ahead of emerging threats, cloud vulnerabilities, and evolving security best practices.
- Continuously raise the bar on a company's security posture through automation and process improvement.
Endpoint Security (Secondary Scope):
- Provide guidance on endpoint security tooling such as SentinelOne and Microsoft Defender when required.
Ideal Candidate:
- Strong hands-on experience in cloud security across AWS and Azure.
- Practical exposure to CSPM tools (e.g., Prisma Cloud, Wiz, Orca) and SIEM / IDS / IPS platforms.
- Experience securing containerized and Kubernetes-based environments.
- Familiarity with CI/CD security integrations (e.g., Snyk, GitHub Advanced Security, or similar).
- Solid understanding of network security, encryption, identity, and access management.
- Experience with application security testing tools (SAST, DAST, SCA).
- Working knowledge of security frameworks and standards such as ISO 27001, NIST, and CIS.
- Strong analytical, troubleshooting, and problem-solving skills.
Nice to Have:
- Experience with DevSecOps automation and security-as-code practices.
- Exposure to threat intelligence and cloud security monitoring solutions.
- Familiarity with incident response frameworks and forensic analysis.
- Security certifications such as CISSP, CISM, CCSP, or CompTIA Security+.
Perks, Benefits and Work Culture:
A wholesome opportunity in a fast-paced environment that will enable you to juggle between concepts, yet maintain the quality of content, interact and share your ideas and have loads of learning while at work. Work with a team of highly talented young professionals and enjoy the comprehensive benefits that company offers.

Similar jobs
Position Summary
This is a key role supporting the day‑to‑day operation of Discover Dollar's Client's core financial systems across the organization. In this role, you will support application security configuration and best practices for systems including Enterprise PeopleSoft, CTB Peoplesoft, Hyperion Planning, HFM, Essbase, Oracle Transportation Management (TMS), Lucernex, ARCS and Coupa. The scope of this role will continue to expand as additional systems are shared across multiple business processes and application modules.
Reporting to the Finance Systems Manager and working closely with multiple business stakeholders as well as functional and technical application support teams across the enterprise, you will be responsible for ensuring the ongoing integrity, stability, and effectiveness of application provisioning across the CTC systems landscape.
What you will do:
- Administer and maintain role-based security across core finance applications, ensuring access is aligned to job responsibilities, least-privilege principles, and established control requirements.
- Support user provisioning, de-provisioning, and access changes across the application landscape, with a focus on timeliness, accuracy, and compliance with approval workflows.
- Perform security design reviews and ongoing monitoring to identify access risks, segregation of duties conflicts, and control gaps, and recommend practical remediation actions.
- Coordinate periodic access reviews and recertification activities with business owners, ensuring user access remains appropriate and exceptions are documented, tracked, and resolved.
- Partner with business stakeholders, application support teams, and audit partners to support investigations, root-cause analysis, control evidence requests, and continuous improvement of the finance systems security model.
What we are looking for:
- Demonstrated experience supporting application security, identity and access management, or user access governance within enterprise systems.
- Understanding of finance processes such as Record-to-Report, Procure-to-Pay, Acquire-to-Retire and Contract-to-Cash and related access control requirements.
- Knowledge of role-based access design, segregation of duties, privileged access considerations, and periodic access review practices.
- Experience operating in a controlled environment with audit, compliance, and governance expectations across multiple business units and systems.
- Proven ability to assess security risks, investigate access issues, and support remediation activities in partnership with functional and technical teams.
- Ability to translate business requirements and control expectations into sustainable security roles, access models, and process improvements.
- Strong analytical, documentation, and stakeholder management skills, with the ability to communicate clearly across business, technology, and audit teams.
- Working knowledge of integrated application environments, including how security roles, workflows, and data flows interact across upstream and downstream systems.
What you will bring:
- 5+ years of experience in application security, user access administration, identity and access management, or functional support roles within enterprise environments.
- Bachelor’s degree in Information Systems, Computer Science, Business, Finance, or a related discipline, or an equivalent combination of education and experience.
- A strong controls mindset, with experience applying least-privilege, role-based access, segregation of duties, and audit-ready documentation practices.
- Hands-on experience supporting security or access administration for one or more enterprise platforms such as:
- Hyperion / Oracle EPM applications
- PeopleSoft Financials and related workflows
- Coupa and other procure-to-pay platforms
- Concur or other travel and expense applications
- Oracle Transportation Management (TMS) or comparable logistics platforms
- Planview, Lucernex, ARCS, or other enterprise SaaS applications
- Experience supporting access governance processes such as provisioning workflows, role maintenance, recertification, segregation of duties analysis, and audit or compliance reviews.
- Professional certifications such as CISSP, CISM, CRISC, Security+, or ITIL are considered an asset.
Skills
information security Application security
Job Title: Sales Development Representative (SDR)
Location: Remote
Reports to: Account Executive
About Snapsight
Snapsight is an AI-powered platform that enhances event experiences through real-time content summarization and insights. We cater to event professionals by offering features like idea clouds, QR code integration, and competitive intelligence to simplify and elevate the experience at any event. With a strong presence in APAC, we are now expanding into North America and Europe, and we’re seeking skilled SDRs to help drive this growth.
Role Overview
As an SDR at Snapsight, you will be the first point of contact for potential customers, engaging key stakeholders in the events industry across the US and Europe. Your efforts will lay the foundation for successful sales cycles by identifying and qualifying prospects that can benefit from our event technology solutions.
Responsibilities:
- Conduct high-volume outbound prospecting to identify and engage event organizers and technology decision-makers.
- Use platforms like Outreach, Clay, and our CRM system to streamline and enhance outreach processes.
- Qualify leads through research and outreach efforts to ensure alignment with Snapsight’s target audience in the events industry.
- Build relationships with prospects, nurturing them until they are ready for handoff to our Account Executives.
- Collaborate closely with our Account Executives to ensure alignment on market insights and prospecting strategies.
Requirements:
Experience: 2-3 years of outbound sales experience, specifically in the US and European markets.
Industry Knowledge: Background in the events industry or event technology, with a deep understanding of the challenges and opportunities in this field.
Tool Proficiency: Hands-on experience with outbound tools like Outreach, Clay, and CRM platforms (e.g., Salesforce, HubSpot).
Skills: Strong communication, active listening, and relationship-building abilities. Proven track record of meeting and exceeding KPIs.
What We Offer:
- Opportunity to join a high-growth company in the event tech space and help shape its expansion into new markets.
- Competitive salary and commission structure.
- Access to the latest tools and resources to support your success.
Job description
- Important Note: Need Strong Communication Skills. Only 2023, 2024 pass outs those who are looking for Internship cum permanent job can apply.
- Must be interested in proceeding a career in Sales.
About Company:
All Time Design is seeking enthusiastic and motivated individuals to join our team as Business Development Executives. We are a dynamic company focused on providing innovative solutions to our clients. As a fresher, you will have the opportunity to learn and grow in a supportive environment while contributing to our business development efforts.
Responsibilities:
- Learn to qualify leads from marketing campaigns as potential sales opportunities
- Assist in contacting potential prospects through various channels, such as cold calls and emails
- Learn to present our company and its offerings to potential prospects
- Gain understanding of prospect's needs and learn to suggest appropriate products/services
- Assist in building and nurturing long-term relationships with prospects
- Shadow experienced team members to learn how to proactively seek new business opportunities in the market
- Support in setting up meetings or calls between prospective customers and Sales Manager
- Provide assistance in reporting sales results to the Sales Manager
Requirements:
- No prior work experience required; fresh graduates are welcome to apply
- Eagerness to learn and develop sales skills
- Strong communication skills, both verbal and written
- Willingness to engage in cold calling, emailing, and other sales prospecting techniques
- Basic understanding of sales concepts and metrics is a plus
- Familiarity with CRM software is a plus
- Ability to adapt and thrive in a fast-paced environment
Join us and kickstart your career in sales with All Time Design!
Job Type: Internship
Contract length: 6 months
Pay: ₹10,000.00 per month
Benefits:
- Flexible schedule
Schedule:
- Day shift
Language:
- English (Required)
Work Location: In person
Our client is building cross-border payments infrastructure that provides businesses access to global markets, starting with those in India and subsequently other parts of South & South East Asia. They are enabling users to accept and payout money globally in a simple, reliable, compliant, transparent and financially compelling manner and are seeking an experienced Content Writer with 3-5 years of experience to join our marketing team. The ideal candidate will be responsible for creating compelling and informative long-form articles that will be used in our marketing campaigns for a B2B payment platform. The content writer will work closely with the marketing team to create engaging and high-quality content that targets our target audience.
Responsibilities:
- Write high-quality, long-form articles for our B2B payment platform that will be used in marketing campaigns
- Conduct research on relevant topics and stay up-to-date with industry news and trends
- Collaborate with the marketing team to ensure all content is aligned with our brand messaging and target audience
- Write clear, concise, and engaging content that conveys complex ideas in a simplified manner
- Optimize content for SEO and ensure all articles are formatted properly
- Edit and proofread all content before publication
- Ensure all content is delivered on time and meets our high-quality standards
Requirements:
- Bachelor's degree in English, Journalism, Communications, or related field
- 3-5 years of experience as a Content Writer, preferably in a B2B environment
- Exceptional writing and editing skills, with a keen eye for detail
- Experience with SEO optimization and content formatting
- Strong research skills and ability to synthesize information from multiple sources
- Ability to work independently and manage multiple projects simultaneously
- Excellent communication skills and ability to collaborate with cross-functional teams
- Strong work ethic and commitment to meeting deadlines
We are seeking a skilled NestJS/PostgreSQL Developer to join our development team. As a NestJS/PostgreSQL Developer, you will be responsible for designing and implementing server-side applications, APIs, and databases using NestJS framework and PostgreSQL. You will work closely with other developers, stakeholders, and project managers to deliver high-quality software solutions.
Responsibilities:
- Develop server-side applications and APIs using the NestJS framework.
- Design and implement efficient and scalable database schemas using PostgreSQL.
- Collaborate with front-end developers to integrate server-side logic with the user interface.
- Write clean and maintainable code following best practices and coding standards.
- Conduct code reviews and provide constructive feedback to improve code quality.
- Optimize application performance and troubleshoot any issues or bugs.
- Work closely with stakeholders to understand requirements and translate them into technical solutions.
- Participate in the entire software development lifecycle, including planning, designing, coding, testing, and deployment.
- Stay up-to-date with the latest trends and technologies in web development, NestJS, and PostgreSQL.
Requirements:
- Bachelor's degree in Computer Science, Engineering, or a related field.
- Proven experience (2-5 years) in server-side application development using NestJS framework.
- Strong knowledge of TypeScript and JavaScript.
- Experience with PostgreSQL or other relational databases.
- Proficiency in building and consuming RESTful APIs.
- Familiarity with Git version control system.
- Good understanding of software development principles, design patterns, and best practices.
- Excellent problem-solving and debugging skills.
- Strong communication and collaboration skills.
- Ability to work independently as well as in a team environment.
Preferred Qualifications:
- Experience with other JavaScript frameworks such as Angular or React.
- Knowledge of microservices architecture and containerization (e.g., Docker).
- Familiarity with cloud platforms like AWS, Azure, or GCP.
- Experience with testing frameworks (e.g., Jest, Jasmine).
- Understanding of Agile/Scrum development methodologies.
- Prospecting for potential new clients and turn this into increased business.
- Meet potential clients by growing, maintaining, and leveraging your network.
- Identify potential clients, and the decision makers within the client organization.
- Research and build relationship with new clients.
- Set up meetings between client decision makers and company's decision makers and company's practice leaders/ Principals.
- Plan approaches and pitches.
- Work with team to develop proposals that speaks to the client's needs, concerns, and objectives.
- Participate in pricing the solution/services.
- Handle objection by clarifying, emphasizing agreement and working through differences to a positive conclusion.
- Use a variety of styles to persuade or negotiate appropriately.
- Present new products and services and enhance existing relationship.
- Work with technical staff and other internal colleagues to meet customer needs.
- Arrange and participate in internal and external client debriefs.
Sound Knowledge of Linux server and it commands
Strong Knowledge of shell scripting
Good understading in Relational databases(MYSQL etc.)
Skilled in formulating performant Relational database queries
Good in handling CSV/EXCEL data.
Skilled to work in teams as well as independently
Requirements -
-
2+ years of relevant work experience as a Developer or SDET
-
Fluency in Java and Javascript test Automation
-
Comprehensive knowledge of unit, integration and functional testing
-
Experience working with tools such as Cypress
-
Hands-on experience in writing API automation scripts and unit test scripts
-
Experience in independently building test automation frameworks for Web and Mobile
-
Good knowledge of databases and querying language
-
Experience of working “AGILE + DevOps” process management methodology
-
Exposure to Continuous Integration Process Tools like Jenkins/CircleCI
-
Understanding of REST services and proficiency with REST tools and libraries
(Restassured and Postman)
-
Team Player
-
Good Verbal and Written communication skills
Good to Have -Familiar with Startup culture and work expectations
- Optimizing components for maximum performance across a vast array of web-capable devices and browsers
- Ability to understand business requirements and translate them into technical requirements
- You will ensure that these components and the overall application are robust and easy to maintain.
- Have a good understanding of design and user experience principles.
- Open-minded, flexible, and willing to adapt to changing situations
- Ability to work independently as well as on a team and learn from colleagues
- High adaptability in a dynamic start-up environment
- Ensuring technologies are used efficiently, profitably, and securely. Evaluating and implementing new systems and infrastructure.
- Excellent troubleshooting, analytical and problem-solving abilities with a tenacious commitment to finding the root cause of issues.
Qualifications :
- B. Tech/ B.E. /M. Tech/ BCA / MCA or a related technical discipline from reputed universities
Skills Required :
- Minimum 1+ years of experience in REST API development using python.
- Must have experience with anyone popular python frameworks like Django, Flask, and FastAPI Framework.
- Experience in designing and developing Restful Web services and Remote procedure calls.
- Able to integrate multiple data sources and databases into one system
- Knowledge of load testing and optimizing code for performance, security, and scalability
- Experience with Unit testing frameworks in Python
- Knowledge of modern authorization & authentication mechanisms.
- Able to create database schemes that represent and support business processes
- Knowledge of Version Control System & basics of CI/CD
- Write and maintain technical documentation
- Solid foundation in OOPS, Data structures, and Algorithms
- Knowledge of SDLC phases of project development.
- Experience in one or more No SQL Databases such as MongoDB, and Cassandra.
- Experience with event-based databases and programming
- Good experience in synchronous programming and thread-based programming.
- Experience with schedulers.
- Good to have knowledge of Linux shell commands.
- Good to have experience in Kubernetes & Docker
- Knowledge of any Cloud Service like GCP or AWS would be an added advantage
- Cares deeply about writing Quality, Testable & Modular code
- Good to have an understanding of NLP.











