Product Security Engineer

Skills :- SCA, SAST, Iac tools, SCM, Developers with Devops experience, application development security

Shift Timings - 2.00 pm - 11.00 pm

Experience :- 5-7 years

Engineer, Product Security

Omnicom Global Solutions, Hyderabad IN

About Omnicom Global Solutions

Role Overview

We have an exciting opportunity for an Engineer, Product Security at our Hyderabad office. This role supports secure software development, risk mitigation, and product security best practices across automated platforms and infrastructure-as-code environments.

The Product Security Engineer will perform vulnerability assessments, provide risk analysis, support incident response, and collaborate with development and DevOps teams to embed security into all stages of the product lifecycle. This role plays a vital part in enabling secure, scalable, and compliant services across Omnicoms digital ecosystem.

Key Responsibilities

- Assist in implementing secure software development standards and practices.

- Support integration of security measures into automated service platforms and infrastructure-as-code.

- Conduct regular security assessments and vulnerability scans for applications and infrastructure.

- Analyse and report on security risks and vulnerabilities; provide mitigation recommendations.

- Collaborate with the incident response team on investigations and real-time threat intelligence.

- Monitor and manage security tools to detect and respond to application and infrastructure threats.

- Continuously monitor cloud environments and SaaS platforms for emerging security threats.

- Work closely with development, QA, and IT teams to support secure software delivery.

- Prepare and present security metrics, reports, and summaries to Product Security Leads and stakeholders.

- Deliver security awareness training on secure software development and SecDevOps practices.

- Contribute to the maintenance of security documentation and internal guidelines.

Required Qualifications

- 3-5 years of experience in cybersecurity, software engineering, or DevOps with a focus on product security.

- Familiarity with security assessment tools (e.g., SAST, SCA scanners) and CI/CD environments.

- Basic understanding of secure coding, cloud security, and infrastructure-as-code practices.

- Hands-on experience with tools such as GitHub, AWS, Terraform, Jenkins, Docker, etc.

- Understanding of IT governance frameworks (e.g., SDLC, ITIL) is a plus.

- Strong analytical, documentation, and troubleshooting capabilities.

- Bachelor's degree in Cybersecurity, Computer Science, IT, or related field.

- Strong technical skills relevant to Information Security such as secure coding standards, ethical hacking techniques, network security, SIEM, and risk analysis

- Certifications such as Security+ or CEH are a plus.

Preferred Qualifications

- AppSec depth (CSSLP, eWPT), Cloud specialization (AWS Security), Foundational credibility (Security+), and CEH are a plus.

- Experience with cloud security frameworks and zero trust architecture.

Note :- Interested Candidates can share their CVs on shalu.singh@omc.com

Regards,

Shalu Singh