Staff Security Engineer

As a Staff Security Engineer at Loco, you will play a crucial role in developing the company's security strategy, enhancing threat visibility, and proactively hunting for adversaries. Your primary responsibilities will include analyzing security signals, devising innovative techniques to detect and mitigate threats, and collaborating with security researchers to validate and implement findings into real-world detection rules and playbooks. You will be tasked with building and optimizing security tools to detect and prevent malicious activities, analyzing threat feeds, IOCs, and TTPs to stay ahead of emerging threats, and integrating intelligence into security operations. Additionally, you will be expected to automate threat detection workflows using Python, Golang, or cloud-based automation tools and participate in industry working groups and standards initiatives such as the Cloud Security Alliance. To qualify for this role, you should have 10-12 years of experience in security engineering, with a focus on application and infrastructure security in AWS, Azure, or GCP environments. You should also possess 3-5 years of experience in protocol-level debugging using tools like Wireshark, tcpdump, nmap, netcat, mitmproxy, and censorship-resistant tunnels like Shadowsocks, WireGuard, and V2Ray. A deep understanding of Threat Modeling, Certificate Management, and Deep Packet Inspection techniques is essential, along with a strong grasp of TLS, DNS, Network protocols, and Proxy protocols like SOCKS5 and TLS Tunneling. Proficiency in Python 3.7 or above is a must. Candidates with relevant certifications such as GWAPT, OffSec's Advanced Web Attacks and Exploitation (WEB-300), a strong understanding of SSO protocols like OIDC, OAuth 2.0, and SAML, and active participation in security meetups, conferences, and bug bounty programs will be given bonus points. Join Loco and contribute your expertise to the dynamic field of security engineering under the guidance of Abin Chandra.,