Jobs

Interviews
Job Alerts
Tools

Upskill and Grow with AI

Mock Interview Practice interviews in realistic simulations

Coding Practice Improve your coding skills with challenges

Certification Earn certifications to validate your skills

AI Learning Get trained with AI expert sessions

Career Path AI insights for smarter career decisions

AI Job Match Score AI-Powered Job Match Against Your Resume and Optimize Your Resume

Career Tools and Resources

Resume Builder Build Professional Resume with Ease

ATS Friendliness Check Check Resume Friendliness for Applicant Tracking Systems

Auto Apply Apply to hundreds of jobs on any platform effortlessly

Co-Pilot (Chrome Extension) Your AI Assistant for Seamless Browsing Efficiency

Interview Questions Streamline interviews with ready-to-use questions

Salaries Discover market-driven salary insights across skillsets and geographies

Companies Explore leading companies actively hiring talent
For Employers

Home
>
Jobs in bengaluru
>
Meesho
>
Security Engineer IV

Security Engineer IV

Meesho

7 - 12 years

6 - 10 Lacs

bengaluru

Posted:16 hours ago| Platform:

Apply

Skills Required

continuous integration cloud platforms software development life cycle protocols ci cd pipeline artifactory python ci/cd sso docker react.js node.js java git application security gcp jenkins saml product security devsecops aws oauth sdlc

Work Mode

Work from Office

Job Type

Full Time

Job Description

As a Security Engineer 4, your role is integral in ensuring the security of our products throughout their development lifecycle. You will be involved from the very beginning, participating in threat modeling and design reviews to identify potential risks early. You'll also integrate and manage SAST tools within our CI/CD pipeline, ensuring continuous security testing as code evolves. Additionally, you'll lead and conduct vulnerability assessments and penetration testing (VAPT) to proactively uncover and address security vulnerabilities before they reach production.

What you will do

Lead and manage all aspects of the Secure Software Development Lifecycle (SDLC).
Implement and manage security tools within the CI/CD pipeline (DevSecOps).
Conduct and oversee VAPT for web applications, APIs, iOS, and Android apps.
Perform threat modeling, design, and architecture reviews to identify potential risks.
Execute manual source code reviews and enhance security in production environments.
Manage and optimize a self-managed bug bounty program.
Provide security architectural guidance to Engineering and IT teams.
Manage issues identified from penetration tests and bug bounty programs.
Lead security training and awareness campaigns across the organization.
Manage Web Application Firewalls (WAF) to ensure robust protection.
Engage in the Security Champions program to integrate security practices within teams.
Assist in creating and maintaining Security Risk Models for both new and existing systems.

What you will need

7+ years of experience in product security, with a focus on application security and Dev SecOps.
Proven experience in leading architectural changes or cross-team efforts to mitigate security vulnerabilities.
Proficiency in programming languages such as Java, React, Node.js, and Python.
Hands-on experience with manual source code reviews and securing production code.
Expertise in deploying and managing security tools in CI/CD pipelines.
Experience with Git, Jenkins, Artifactory, or other similar technologies.
Strong background in securing the software development lifecycle, including eliminating classes of vulnerabilities.
Proficiency with cloud platforms like AWS or GCP, including their security tools.
Experience with Docker and containerization technologies is highly desirable.
Additional experience in infrastructure security, particularly in GCP, Docker, and containerization, is a bonus.

Bonus Points

Relevant certifications such as GIAC Web Application Penetration Tester (GWAPT), OffSecs Advanced Web Attacks and Exploitation (WEB-300), etc.
Strong understanding of SSO protocols, including OAuth and SAML.
Experience speaking at meetups or conferences.
Experience participating in bug bounty programs.

More Jobs at Meesho

Senior Manager- Experience

Bengaluru

5 - 7 yrs

INR 22 - 37 Lacs

Cluster Head -Last Mile - Jharkhand

Ranchi

3 - 5 yrs

INR 5 - 7 Lacs

Program Manager - Category Marketing

Bengaluru

2 - 5 yrs

INR 4 - 7 Lacs

Senior Business Manager - Hardline

Bengaluru

5 - 10 yrs

INR 7 - 12 Lacs

Cluster Head Middle Mile - Agra, UP

Agra, Uttar Pradesh, India

Experience: Not specified

Salary: Not disclosed

Mock Interview

Practice Video Interview with JobPe AI

Start Python Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.

Job Application AI Bot

Apply to 20+ Portals in one click

Download Now

Download the Mobile App

Instantly access job listings, apply easily, and track applications.

Enhance Your Python Skills

Practice Python coding challenges to boost your skills

Start Practicing Python Now

Meesho

E-commerce/Social Commerce

Gurugram

Login to

Please Verify Your Phone or Email

Confirm Action

Security Engineer IV