11+ Information security management system Jobs in Bangalore (Bengaluru) | Information security management system Job openings in Bangalore (Bengaluru)

SENIOR INFORMATION SECURITY ENGINEER (DEVSECOPS)

Key Skills: Software Development Life Cycle (SDLC), CI/CD

About Company: Consumer Internet / E-Commerce

Company Size: Mid-Sized

Experience Required: 6 - 10 years

Working Days: 5 days/week

Office Location: Bengaluru [Karnataka]

Review Criteria:

Mandatory:

• Strong DevSecOps profile
• Must have 5+ years of hands-on experience in Information Security, with a primary focus on cloud security across AWS, Azure, and GCP environments.
• Must have strong practical experience working with Cloud Security Posture Management (CSPM) tools such as Prisma Cloud, Wiz, or Orca along with SIEM / IDS / IPS platforms
• Must have proven experience in securing Kubernetes and containerized environments including image security,runtime protection, RBAC, and network policies.
• Must have hands-on experience integrating security within CI/CD pipelines using tools such as Snyk, GitHub Advanced Security,or equivalent security scanning solutions.
• Must have solid understanding of core security domains including network security, encryption, identity and access management key management, and security governance including cloud-native security services like GuardDuty, Azure Security Center etc
• Must have practical experience with Application Security Testing tools including SAST, DAST, and SCA in real production environments
• Must have hands-on experience with security monitoring, incident response, alert investigation, root-cause analysis (RCA), and managing VAPT / penetration testing activities
• Must have experience securing infrastructure-as-code and cloud deployments using Terraform, CloudFormation, ARM, Docker, and Kubernetes
• B2B SaaS Product companies
• Must have working knowledge of globally recognized security frameworks and standards such as ISO 27001, NIST, and CIS with exposure to SOC2, GDPR, or HIPAA compliance environments

Preferred:

• Experience with DevSecOps automation, security-as-code, and policy-as-code implementations
• Exposure to threat intelligence platforms, cloud security monitoring, and proactive threat detection methodologies, including EDR / DLP or vulnerability management tools
• Must demonstrate strong ownership mindset, proactive security-first thinking, and ability to communicate risks in clear business language

Roles & Responsibilities:

We are looking for a Senior Information Security Engineer who can help protect our cloud infrastructure, applications, and data while enabling teams to move fast and build securely.

This role sits deep within our engineering ecosystem. You’ll embed security into how we design, build, deploy, and operate systems—working closely with Cloud, Platform, and Application Engineering teams. You’ll balance proactive security design with hands-on incident response, and help shape a strong, security-first culture across the organization.

If you enjoy solving real-world security problems, working close to systems and code, and influencing how teams build securely at scale, this role is for you.

What You’ll Do-

Cloud & Infrastructure Security:

• Design, implement, and operate cloud-native security controls across AWS, Azure, GCP, and Oracle.
• Strengthen IAM, network security, and cloud posture using services like GuardDuty, Azure Security Center and others.
• Partner with platform teams to secure VPCs, security groups, and cloud access patterns.

Application & DevSecOps Security:

• Embed security into the SDLC through threat modeling, secure code reviews, and security-by-design practices.
• Integrate SAST, DAST, and SCA tools into CI/CD pipelines.
• Secure infrastructure-as-code and containerized workloads using Terraform, CloudFormation, ARM, Docker, and Kubernetes.

Security Monitoring & Incident Response:

• Monitor security alerts and investigate potential threats across cloud and application layers.
• Lead or support incident response efforts, root-cause analysis, and corrective actions.
• Plan and execute VAPT and penetration testing engagements (internal and external), track remediation, and validate fixes.
• Conduct red teaming activities and tabletop exercises to test detection, response readiness, and cross-team coordination.
• Continuously improve detection, response, and testing maturity.

Security Tools & Platforms:

• Manage and optimize security tooling including firewalls, SIEM, EDR, DLP, IDS/IPS, CSPM, and vulnerability management platforms.
• Ensure tools are well-integrated, actionable, and aligned with operational needs.

Compliance, Governance & Awareness:

• Support compliance with industry standards and frameworks such as SOC2, HIPAA, ISO 27001, NIST, CIS, and GDPR.
• Promote secure engineering practices through training, documentation, and ongoing awareness programs.
• Act as a trusted security advisor to engineering and product teams.

Continuous Improvement:

• Stay ahead of emerging threats, cloud vulnerabilities, and evolving security best practices.
• Continuously raise the bar on a company's security posture through automation and process improvement.

Endpoint Security (Secondary Scope):

• Provide guidance on endpoint security tooling such as SentinelOne and Microsoft Defender when required.

Ideal Candidate:

• Strong hands-on experience in cloud security across AWS and Azure.
• Practical exposure to CSPM tools (e.g., Prisma Cloud, Wiz, Orca) and SIEM / IDS / IPS platforms.
• Experience securing containerized and Kubernetes-based environments.
• Familiarity with CI/CD security integrations (e.g., Snyk, GitHub Advanced Security, or similar).
• Solid understanding of network security, encryption, identity, and access management.
• Experience with application security testing tools (SAST, DAST, SCA).
• Working knowledge of security frameworks and standards such as ISO 27001, NIST, and CIS.
• Strong analytical, troubleshooting, and problem-solving skills.

Nice to Have:

• Experience with DevSecOps automation and security-as-code practices.
• Exposure to threat intelligence and cloud security monitoring solutions.
• Familiarity with incident response frameworks and forensic analysis.
• Security certifications such as CISSP, CISM, CCSP, or CompTIA Security+.

Perks, Benefits and Work Culture:

A wholesome opportunity in a fast-paced environment that will enable you to juggle between concepts, yet maintain the quality of content, interact and share your ideas and have loads of learning while at work. Work with a team of highly talented young professionals and enjoy the comprehensive benefits that company offers.

Responsibilities:

● Design, develop, test, and maintain software applications using Java technologies.

● Implement robust solutions using Spring MVC, Spring Boot, and Hibernate frameworks.

● Develop and optimize database operations with MySQL.

● Analyze and solve complex problems by applying knowledge of data structures and algorithms

Requirement -

Programming Languages & Technologies: Strong knowledge of Java (Core Java, Java 8+).

● Frameworks: Proficiency in Spring MVC, Spring Boot, and Hibernate. ● Algorithms and Data Structures: Good understanding and practical application of DSA concepts.

● Databases: Experience with MySQL – writing queries, stored procedures, and performance tuning.

● Version Control Systems: Experience with tools like Gi

Responsibilities:

· Responsible for Technology hiring across levels and manage a team of recruiters

· Responsible for end to end Talent Acquisition including planning and strategizing for deliverables, sourcing and attracting candidates through various active and passive channels; candidate engagement; stakeholder management; reporting; database management etc.

· High end ownership of the deliverables.

· Focus on priorities, drive & deliver successfully.

· Maintain effective communication with the hiring managers and candidates.

· Build influential candidate relationships throughout the process.

· Follow and practice latest recruitment trends and strategies.

· Build and maintain network of potential candidates through proactive market research and networking.

· Proactively resolve bottle necks.

· Prepare and submit timely progress reports to various stakeholders.

· Involve in various initiatives for process improvement and talent branding

What are we looking for?

· Proven 5 -10 years of experience in technical recruitment with excellence in hiring across levels, stakeholder management, database management, reporting etc

· Ability to manage a team of recruiters and sourcers

· Expertise in stakeholder management and leading an entire unit of hiring independently

· Possess the ability to assess candidates against profiles and the culture

· Strong understanding about engineering and product requisitions

· Demonstrated ability to manage competing priorities and work under tight timelines

· Excellent communication and interpersonal skills

· Impeccable multitasking and organizational skills

· Always pushing the limits

· Excellent relationship building and analytical skills

· Knowledge of latest recruitment trends and practices

· Proven skills in attracting candidates through various social media channels

· Detailed oriented, organized, discrete and dedicated professional

About us:

 We are not just an AD agency or a creative agency, we are a Communication Company. Founded in 2014, Moshi Moshi is a young, creative, gutsy and a committed communication company that wants its clients to always Expect the EXTRA from it.

Our primary clientele consists of Startups & Corporates like Ola, Zoomcar, Mercedes Benz, ITC, Aditya Birla Group, Colive, MTV, Toit, IHCL, Jaquar, Sobha, Simple Energy, and Godrej amongst others. We have a huge team of creative folks, marketers, learners, developers, coders and a puppy momo, who believe Moshi Moshi is an experience rather than a company.

Why Moshi Moshi? 

The learning curve at Moshi Moshi is very high when compared to the industry average and that's primarily because you get to work with Companies / Brand managers / Marketers of different sizes and thought processes who push you to think better and faster. So, Hop on to the ride we dearly call Moshi Moshi and let's Say hello to the world.

PS:- We are also very close to a lot of food joints and breweries, so in case your manager/boss gives you a lot of work or is Expecting the Extra, you can quickly grab a recharge and continue with your everyday life struggles. We can't do much about the manager!

What .............................. Are you a FULL STACK developer?

Yeah man I am Have you developed FULL STACK websites? Yeah I have done a few of these Oooo Mannnnn these are very poor Let me tell you one thing we are going to create the best website of your life together like these:- https://www.unisoindia.com/ https://www.florestagoa.in/ https://www.myhealthymunch.com/ https://www.moshimoshi.in/ 

Are you up for it? I am sure you are. We will take care of the design and you take care of the dev Here is JAY Calling out for His VIRU. Sachin calling out for his Sehwag. Ranveer calling for out his Deepika. Moshi Moshi & (Lucky you) Ps:- You can be the lucky one(Real JD is mentioned below)

A FULL STACK Developer is responsible for the coding, design, and layout of a website according to a company's specifications. As the role takes into consideration user experience and function, a certain level of both graphic design and computer programming is necessary. Handling the development of the website. Handling the tech side of the business and coordinating with the client. Team Management. Website Development.

Languages - React.JS, Redux, MySQL, Java Script, Microservices, Node.JS, MySQL, Mongo DB AWS server-side.

Experience : 2 to 4.5 Years

BE/Btech (EEE,EC) ME/Mtech (EEE/EC)

• Strong knowledge in Embedded C, C programming

• Should have knowledge on Microcontroller / Microprocessor, ARM architecture, Memory Subsystem 

• Knowledge of communication protocols like I2C,SPI, UART, CAN ,USB, PCIE, GPIO programming 

• Good Handson Knowedge in Linux Device Driver , Debugging, System Architecture 

• Experience / good knowledge in developing boot loader, bare metal low level device drivers, testing and debugging the issues.

• Good knowledge / experience at least in one project in UBOOT, Linux device driver and BSP configuration and development in Yocto / Buildroot/ Busybox environment

• Knowledge on Linux based product development, hands-on with at least one project based on Linux with any Application Processor (MPU) 

• Embedded domain with good knowledge and hands-on of 32 bit microcontrollers (preferably Arm Cortex MO/M4/M7) 

• Should possess very Good Aptitude and Strong problem solving skills

10

• Competitive salary

• Health insurance

• Professional development opportunities

• Collaborative and innovative work environment

Cloud Platform Core forms the foundation of SAP Cloud Platform, providing key capabilities and services around platform core components [like Cloud Foundry, Kubernetes], extension factory, commercial infrastructure services, platform services, data management services etc

As an integral member of the SAP Cloud Platform Core Unit in Bangalore, India, you will be contributing to development in one of the following areas:

1. Data Management Services for Cloud Foundry, Kubernetes Environments – Both SAP Managed and Cloud Provider based data management services
2. Kubernetes as a Service – Multi-Cloud Kubernetes Cluster as a Service
3. Kernel Services – Enable the development of SAP CP Kernel Services -   technical services used by all SAP cloud solutions to make the Intelligent Enterprise a reality for our customers

EXPECTATIONS AND TASKS

• Demonstrate excellent quality, design, development and delivery skills in scrum teams working in short development and release cycles.
• Use and extend Open Source frameworks heavily and contribute to them, as well.
• Work with geographically distributed teams seamlessly
• Building upon domain knowledge in the area of application and service development in cloud and also in the technical/proprietary skills to reach levels of expertise
• Having a logical approach to problem solving and have the ability to respond to detailed queries
• Working as a fully contributing team member with independent planning & execution responsibilities
• Site reliability engineering for the Service that your team is responsible for

SKILLS AND COMPETENCIES

• Excellent programming know-how in JAVA/JavaScript/C++/NodeJS/Ruby/GO or in any other languages especially framework development. Deep expertise in at least one programming language & tech stack to write maintainable, scalable, unit-tested code
• Passion towards adopting and contributing to open source
• Ability to work with the team in the design and development aspects for the product
• Good understanding of building scalable Web Applications/Cloud Services using cutting edge Web Technologies (JQuery, Server-Side JS, REST, OData)
• Sound knowledge in Object Oriented Programming Principles, Design Patterns, Software Architecture
• Excellent analytical and problem-solving skills
• Goal-oriented team worker with good communication skills. Fluent in English, both written and spoken.
• Ability to work independently, and eagerness to learn and explore new topics
• Prior experience in working with Agile software methodologies
• Strong analytical and problem-solving skills

TECHNOLOGY STACK

• Languages – Java, NodeJS, Golang
• Scripting Languages – Chef, Python, Shell Scripting
• UI – AngularJS, Object Oriented JavaScript, CSS, HTML, SAP UI5
• Storage & Databases – Swift, S3, PostgreSQL, MongoDB, Redis
• Messaging - RabbitMQ
• PaaS & Container Orchestration – Cloud Foundry, Kubernetes
• IaaS – AWS, Microsoft Azure, Google Cloud Platform, OpenStack

EDUCATION AND QUALIFICATIONS/WORK EXPERIENCE

• Masters or bachelor’s degree in Engineering or Technology, majoring in Computer Science, from a premiere institute, with excellent academic records.
• Sound understanding cloud native development and architecture
• 2-6 years of relevant experience in software development

About the Company-

About the Internship:

selected intern's day-to-day responsibilities include:

1. Develop server-side/client-side applications.

2. Basic knowledge of Data structures.

3. Test and document the developed code.
4. Must have basic knowledge of any one of the following technologies -

     PHP, Javascript, Golang, Dart.

Note - Only those candidates can apply who:

1. are available for full-time (in-office) internship

2. can start the internship between 1st Aug'22 and 15th Aug'22

• At least 2+ years of Handson in developing solutions on Microsoft Azure Platform
• 5+ years of industry experience designing and developing enterprise scale services & platforms 
• 5+ years of experience in C# with solid analytical, debugging, and problem-solving skills
• At least 1.5 year of hands-on experience with React JS/ Typescript /Bootstrap/Angular related frameworks
• At least 3+ Year Hands on in Relational Database SqlServer/ Azure SQL.