Staff/Lead Security Engineer

Job Title: Staff/Lead Security Engineer

Location: Bengaluru

Experience: 8+ years

Employment Type: Full-time

Team: Security Engineering

Role Overview

We're looking for a Staff / Lead Security Engineer to own and elevate our security

posture across AI platforms, microservices, data pipelines and mobile/web products.

You'll design and build scalable security controls that integrate seamlessly into CI/CD

and cloud infrastructure, blending deep technical depth with practical risk judgment.

This is a breaker-builder role; you'll collaborate closely with AI, Product and DevOps

teams to embed security from the ground up.

Key Responsibilities:
Security Engineering & Automation
%CF; Design and implement security automation frameworks for threat detection,
remediation and compliance validation across cloud and application layers.
%CF; Operate SentinelOne EDR/XDR and SIEM platforms for automated detection and
response workflows.
%CF; Develop tooling to improve security visibility across AI model pipelines, APIs and
data integrations.
%CF; Integrate security controls (SAST, DAST, SCA, IaC scanning) into CI/CD
workflows via tools like Arnica.

Application & API Security
%CF; Configure and manage Reblaze WAF for custom DDoS and bot protection.
%CF; Conduct secure code reviews and threat modeling for AI microservices, REST
APIs and agentic frameworks.
%CF; Partner with engineering teams to remediate vulnerabilities and enforce secure
SDLC practices.
%CF; Lead periodic VAPT (Vulnerability Assessment & Penetration Testing) for web,
mobile and Agentic AI platforms.

Cloud & Infrastructure Security
%CF; Secure multi-cloud (GCP/AWS) environments using native security services and
third-party tooling.
%CF; Build and maintain IaC security baselines with automated configuration drift
detection.
%CF; Manage secrets, IAM policies and container security across production
workloads.

%CF; Architect and enforce Zero Trust Network Access (ZTNA) policies across internal
services, cloud workloads and third-party integrations. new
%CF; Identify and remediate misconfigurations, exposed defaults and public exposures
across systems like Grafana, Zookeeper and Prometheus.

AI & Data Security
%CF; Continuously monitor for compromised datasets, credentials and model theft
attempts across deep/dark web channels.
%CF; Implement data protection controls for AI training pipelines, model storage and
inference endpoints.
%CF; Deploy and tune DLP (Data Loss Prevention) policies to prevent sensitive data
exfiltration across SaaS, cloud and endpoint channels.
%CF; Leverage CASB solutions to enforce security policies, gain visibility and control
data movement across cloud applications.
%CF; Evaluate and mitigate risks including prompt injection, model leakage and data
exfiltration in AI agent deployments.

Monitoring, Threat Hunting & Incident Response
%CF; Drive improvements to threat detection, alert triage and response automation
across internal teams.
%CF; Conduct proactive threat hunting using SIEM telemetry, EDR/XDR signals and
threat intelligence feeds to detect stealthy or persistent adversaries.
%CF; Lead digital forensic investigations — acquiring, preserving and analysing
artifacts from endpoints, cloud environments and network logs during security
incidents.
%CF; Develop and maintain Security Incident Management (SIM) playbooks, runbooks
and post-incident review processes to drive continuous improvement.
%CF; Monitor dark web forums and marketplaces for leaked data, compromised
credentials and fake breach claims.
%CF; Build dashboards and reports to surface proactive risk visibility for stakeholders.

Compliance & Governance
%CF; Contribute to implementation and ongoing compliance for ISO, SOC 2, GDPR
and HIPAA controls.
%CF; Work with GRC tools (Sprinto, Scrut etc).
%CF; Document policies, run internal audits and support external assessments.
%CF; Manage security communications with third-party vendors (Google Security,
PingSafe, VisitHealth, etc.) and coordinate ethical disclosures.

Security Awareness & Leadership
%CF; Conduct internal security training and phishing simulations for engineering and
business teams.
%CF; Mentor engineers and interns on VAPT, incident response and secure coding
practices.
%CF; Champion org-wide adoption of DMARC, SPF and DKIM for email protection

Requirements

%CF; Experience: 7+ years in application, cloud or product security engineering.
%CF; Strong programming and scripting in Python, Go or Node.js for security
automation and tooling
%CF; Deep understanding of web and mobile security, OWASP Top 10 and secure
SDLC practices end to end
%CF; Hands-on with IAM, key management and configuration monitoring on GCP or
AWS
%CF; Experience with CSPM, CASB, DLP and SIEM platforms for cloud security
visibility and control
%CF; ZTNA architecture and Zero Trust policy enforcement across multi-cloud
environments
%CF; IaC security - Terraform, CloudFormation
%CF; CI/CD security integration - GitHub Actions, Jenkins, GitLab CI
%CF; Container and orchestration security - Docker, Kubernetes, EKS/GKE
%CF; Proactive threat hunting using SIEM telemetry, EDR/XDR signals and threat intel
feeds
%CF; Digital forensics - endpoint, cloud and network artifact acquisition and analysis
%CF; Security Incident Management (SIM) - playbook development, runbooks and
post-mortems
%CF; Vulnerability assessment and penetration testing across web, mobile and cloud
platforms
%CF; WAF, bot protection and DDoS mitigation configuration and tuning
%CF; Familiarity with AI model security — prompt injection, model leakage, inference
endpoint protection
%CF; Familiar with ISO 27001, SOC 2, NIST, GDPR and HIPPA
%CF; Fair understanding of GRC platforms (Sprinto, Scrut or similar)
%CF; Certifications (Good to have): OSCP, GCP/AWS Security Specialty, CEH, CISSP
or CKS.

Soft Skills
%CF; Strong analytical and problem-solving mindset - able to break down ambiguous
risk problems into structured, actionable findings
%CF; Cross-functional collaboration with Product, AI, DevOps and business
stakeholders
%CF; Passion for automation, continuous improvement and staying ahead of the
evolving threat landscape
%CF; Clear communicator, effectively translating complex security risks into concise,
business-relevant insights that drive informed decision-making.
%CF; Ownership-driven - comfortable making decisions and leading initiatives with
minimal supervision