Skip to main content
Posted 21 May, 2026

Cyber Security Engineer

Welldoc, Inc.
Bangalore,Karnataka,India,560078 Full Time
Reference: 135_599529_375

Job Description -

We are looking for a Security Engineer with less than six years of cybersecurityexperience who has a solid grasp of the CIA Triad and hands-on experience with Threat Modelingand Risk Assessments. You should have a deep understanding of the OWASP Top 10 and the MITREATTACK framework.


JOB DUTIES:



  1. Secure Architecture & Threat Modeling
    Conduct Threat Modeling and Risk Assessments using the STRIDE methodology during thedesign phase of the SDLC.
    Develop and maintain Security Architectural Diagrams that define network segmentation, trustboundaries, and data flow across cloud environments.
    Apply the CIA Triad (Confidentiality, Integrity, and Availability) to every architectural decision,balancing security with system performance.
  2. Vulnerability Management & Remediation
    Execute and oversee SAST and DAST programs (utilizing tools like Veracode) to identifycode-level and runtime flaws.
    Perform deep-dive analysis of CVEs and third-party library risks; spearhead the creation ofthe SBOM (Software Bill of Materials).
    Partner with development teams to document security issues and provide a clear, actionable& Plan to Fix & for identified flaws.
  3. Identity & Access Management (CIAM)
    Design and implement secure authentication and authorization flows using SAML 2.0 andOpenID Connect (OIDC).
    Provide subject matter expertise on CIAM best practices to ensure seamless yet secure userexperiences and APIs security.
  4. DevSecOps & Automation
    Automate security scanning and policy enforcement within the DevOps CI/CD pipeline.
  5. Coordinate with Development and QA team
    Understands the concept of CVE, CWE and CVSS and can work on prioritizing the securityrelated issues with high-risk scores and work with development and QA team to fix thesecurity issues and execution of security test cases.


YOU MUST HAVE:

  • Excellent documentation and communication skills
  • Deep understanding of Threat modeling and Risk Assessment
  • Good understanding of cloud environments and security
  • Certifications: CEH, CISSP, AZ500
Apply to this Job

Sign up for Job Alerts

By clicking Create Alert, you agree to the Global Terms of Use Agreement and acknowledge that you have read and understand the Global Privacy Policy.