See yourself at Twilio

Join the team as Twilio’s next Senior Offensive Security Engineer

About the job

This position is needed to The Senior OffSec Engineer will be responsible for the day-to-day execution of penetration tests and contributing to larger Red Team campaigns. You move beyond simple scanning to manual exploitation and are beginning to automate your workflows.  

Responsibilities

In this role, you’ll:

• Full-Stack Penetration Testing: Perform manual and automated testing of web applications, APIs, and mobile apps (iOS/Android).
• Internal/External Network Audits: Conduct network and cloud level assessments with various tooling
• Vulnerability Validation: Triage and validate reports from automated scanners or bug bounty hunters to eliminate false positives and escalate true positives
• AI/LLM Probing: Perform initial prompt injection and jailbreak tests on AI prototypes, services, and applications using established checklists (OWASP Top 10 for LLMs).
• Technical Reporting: Draft high-quality reports that detail the "path to compromise" with clear, reproducible steps for developers.
• Tool Maintenance: Manage and update the team's testing infrastructure (e.g., Burp Suite, and basic C2 listeners).
• Remediation Support: Provide direct technical guidance to engineering teams on how to patch vulnerabilities like XSS, SQLi, and IDOR.
• Adversary Emulation: Design and lead multi-week Red Team operations that mimic specific threat actors (APTs) to test the SIRT detection capabilities.
• Custom Exploit Development: Build custom payloads, droppers, and obfuscated scripts to bypass EDR/AV and maintain stealth.
• AI Red Teaming Architecture: Build automated testing frameworks for AI systems (e.g., using PyRIT, Promptfoo, or Garak) to test for models related to sensitive data leakage.
• Cloud & Infrastructure Attacks: Execute sophisticated attacks against AWS/Azure/K8s, focusing on IAM misconfigurations and container escapes.
• Purple Teaming: Collaborate with SIRT and Detection Engineering to tune SIEM alerts based on the techniques used during an engagement.
• Strategic Bug Bounty Management: Oversee the organization's bug bounty program, identifying trends in submissions to suggest broad architectural security changes.

*Required:

• Experience: 3–5 years in offensive security, penetration testing, or a high-volume bug bounty background and track record of finding high/critical vulnerabilities in complex environments.
• Concepts: Expert Knowledge and  solid understanding of the MITRE ATT&CK matrix and the OWASP Top 10 for web applications and top 10 for LLMs, post exploitation (lateral movement, persistence, data exfiltration) and Adversarial ML.
• Tooling: Proficient in Burp Suite professional, Nmap, Metasploit, Wireshark etc... and AI security tools such as LangChain, TensorFlow for adversarial testing, as well as use of C2 frameworks (Cobalt Strike, Sliver, Havoc) or similar tools
• Scripting and Coding: Ability to write functional scripts in Python or Bash to automate repetitive testing tasks and proficiency in Python, C++, and scripting for creating custom offensive tooling that avoids signature-based detection.
• Certifications: Possession of advanced industry certifications such as OSCP, OSEP, OSWE, GXPN or similar
• Telecom expertise is preferred

Location

1. This role will be remote, and based in India. (Karnataka, Tamil Nadu, Telangana, Maharashtra, Delhi)

Travel 

We prioritize connection and opportunities to build relationships with our customers and each other. For this role, you may be required to travel occasionally to participate in project or team in-person meetings.

What We Offer

Working at Twilio offers many benefits, including competitive pay, generous time off, ample parental and wellness leave, healthcare, a retirement savings program, and much more. Offerings vary by location.

About the Role:

We’re a growing SaaS startup building our security team from the ground up. We’re looking for a hands-on Product Security Engineer who enjoys breaking things (responsibly) and helping teams fix them fast.

This role is very practical and impact-driven. You’ll be embedded close to the product and engineering teams, proactively attacking our own systems before anyone else does. If you like moving fast, owning problems end-to-end, and thinking like a real attacker, this role is for you.

What You'll Do:

• Actively test our SaaS product for security vulnerabilities across web apps, APIs, and cloud infrastructure.
• Perform manual security testing and targeted penetration tests (beyond automated scanners).
• Implement and help implement automated security test suites.
• Identify abuse cases, business logic flaws, and real-world attack paths.
• Work directly with engineers to reproduce issues and drive fixes.
• Help introduce lightweight security practices into the development process (threat modeling, secure design reviews).
• Validate fixes and ensure issues are fully resolved.
• Stay current on new vulnerabilities, attack techniques, and SaaS-relevant threats.

What You'll Bring:

• 5+ years of experience in application security, offensive security, or penetration testing.
• Strong understanding of web and API security (OWASP Top 10, auth, sessions, access control).
•  Experience testing modern SaaS products.
• Comfort working in cloud environments (AWS / GCP / Azure at a practical level).
• Experience with common security testing tools (Burp Suite, Nuclei, etc.).
• Ability to communicate findings clearly and pragmatically to engineers.
• Self-starter mindset — comfortable operating with limited process and high ownership.

Preferred, but not required:

• Startup experience or early-stage product exposure.
• Bug bounty or responsible disclosure experience.
• Secure code review experience (any major language).
• Familiarity with CI/CD and modern SDLC security.
• Offensive security certifications (OSCP, GWAPT, etc.).

About the Role

We are seeking an experienced Engineering Infrastructure Security Manager to lead the security of our production and non-production engineering systems. This is a critical leadership role responsible for securing the infrastructure that powers the software development lifecycle, including source control systems, CI/CD pipelines, build environments, deployment platforms, developer tools, and associated cloud resources. The ideal candidate will bring deep technical expertise in infrastructure security, strong leadership capabilities, and a solid understanding of modern engineering and DevSecOps practices.

Key Responsibilities

Engineering Systems Security

• Design and implement security controls across development, staging, testing, and production environments
• Secure CI/CD pipelines, build systems, and deployment automation against supply chain threats
• Manage security for source control systems, code repositories, and secrets management platforms
• Oversee security of containerized environments (Docker, Kubernetes) and IaC ecosystems
• Ensure security across multi-cloud environments (AWS, GCP, Azure) and hybrid infrastructure

Security Architecture & Technical Leadership

• Design and implement security frameworks aligned with engineering workflows and developer productivity
• Implement zero-trust architecture and least-privilege access models
• Secure API gateways, service meshes, and microservices architectures
• Lead security initiatives across observability, logging, and monitoring platforms
• Strengthen network security posture including firewalls, VPCs, and segmentation

Risk Management & Vulnerability Response

• Conduct security assessments and penetration testing across engineering systems
• Manage vulnerability scanning and remediation programs
• Develop threat models for critical systems and deployment pipelines 
• Lead incident response for infrastructure security events
• Track and analyze security metrics (deployment security, configuration compliance, infra drift)

Team Leadership & Collaboration

• Build, mentor, and manage a high-performing team of security engineers
• Drive a “security as code” culture across engineering teams
• Collaborate with platform, SRE, and development teams to embed security into SDLC
• Provide training and guidance on secure infrastructure practices
• Foster a culture of security awareness and proactive risk reporting

Policy, Compliance & Governance

• Define and enforce security policies aligned with SOC 2, ISO 27001, NIST, PCI-DSS
• Ensure compliance with data protection regulations (GDPR, CCPA)
• Implement strong access control mechanisms and RBAC (must-have)
• Conduct regular audits and maintain compliance documentation
• Manage security for production data access and handling

Automation & Continuous Improvement

• Drive automation of security monitoring, controls, and incident response
• Implement security-as-code using Terraform, CloudFormation, and policy frameworks
• Integrate automated security testing into CI/CD pipelines (SAST, DAST, container scans)
• Maintain infrastructure security baselines and automated compliance checks
• Continuously reduce security technical debt

Business Continuity & Disaster Recovery

• Design and test disaster recovery plans for engineering infrastructure
• Implement backup strategies for source code, artifacts, and configurations
• Ensure high availability and resilience of critical systems
• Support incident response and business continuity planning from a security perspective

Basic Qualifications

Technical Expertise

• 8–12 years of experience in infrastructure security or related fields, with 3+ years in a leadership role
• Strong expertise in cloud security (AWS, GCP, Azure) and cloud-native architectures
• Hands-on experience with Kubernetes, containers, and orchestration platforms
• Deep understanding of CI/CD security, supply chain security, and DevSecOps practices
• Proficiency with Infrastructure-as-Code tools (Terraform, Ansible, CloudFormation)
• Experience with security tools: SIEM, vulnerability scanners, IDS/IPS, endpoint protection
• Strong knowledge of network security, encryption, IAM, and secrets management

Leadership & Collaboration

• Proven experience building and managing high-performing security teams
• Experience driving cross-functional initiatives across engineering, operations, and product teams
• Strong project management and execution skills
• Ability to mentor and grow security talent

Communication & Strategic Thinking

• Strong communication skills with ability to explain complex concepts to technical and non-technical stakeholders
• Experience presenting security strategies and risk insights to leadership
• Ability to translate business needs into security solutions
• Strong documentation and process definition skills

Compliance & Risk Management

• Experience with compliance frameworks: SOC 2, ISO 27001, NIST, PCI-DSS
• Strong understanding of risk assessment and security frameworks
• Knowledge of data privacy and regulatory requirements

Preferred Qualifications

• Bachelor’s or Master’s degree in Computer Science, Information Security, or related field
• Security certifications such as CISSP, CISM, CCSP, CEH, or cloud security certifications
• Experience with GitOps workflows and tools like GitHub Advanced Security or GitLab Security
• Proficiency in scripting/programming (Python, Go, Bash) for automation
• Experience in regulated industries (finance, healthcare, government)
• Background in SRE or DevOps practices
• Experience securing microservices and serverless architectures
• Strong interest in security research and evolving threat landscapes

About the Role

We are seeking an experienced Infrastructure Security Engineer to work on the security of our production and non-production engineering systems. This is a critical  role responsible for securing the infrastructure that powers the software development lifecycle, including source control systems, CI/CD pipelines, build environments, deployment platforms, developer tools, and associated cloud resources. The ideal candidate will bring deep technical expertise in infrastructure security and a solid understanding of modern engineering and DevSecOps practices.

Key Responsibilities

Engineering Systems Security

• Design and implement security controls across development, staging, testing, and production environments
• Secure CI/CD pipelines, build systems, and deployment automation against supply chain threats
• Manage security for source control systems, code repositories, and secrets management platforms
• Oversee security of containerized environments (Docker, Kubernetes) and IaC ecosystems
• Ensure security across multi-cloud environments (AWS, GCP, Azure) and hybrid infrastructure

Security Architecture & Technical Leadership

• Design and implement security frameworks aligned with engineering workflows and developer productivity
• Implement zero-trust architecture and least-privilege access models
• Secure API gateways, service meshes, and microservices architectures
• Lead security initiatives across observability, logging, and monitoring platforms
• Strengthen network security posture including firewalls, VPCs, and segmentation

Risk Management & Vulnerability Response

• Conduct security assessments and penetration testing across engineering systems
• Manage vulnerability scanning and remediation programs
• Develop threat models for critical systems and deployment pipelines 
• Lead incident response for infrastructure security events
• Track and analyze security metrics (deployment security, configuration compliance, infra drift)

Policy, Compliance & Governance

• Define and enforce security policies aligned with SOC 2, ISO 27001, NIST, PCI-DSS
• Ensure compliance with data protection regulations (GDPR, CCPA)
• Implement strong access control mechanisms and RBAC.
• Conduct regular audits and maintain compliance documentation
• Manage security for production data access and handling

Automation & Continuous Improvement

• Drive automation of security monitoring, controls, and incident response
• Implement security-as-code using Terraform, CloudFormation, and policy frameworks
• Integrate automated security testing into CI/CD pipelines (SAST, DAST, container scans)
• Maintain infrastructure security baselines and automated compliance checks
• Continuously reduce security technical debt

Business Continuity & Disaster Recovery

• Design and test disaster recovery plans for engineering infrastructure
• Implement backup strategies for source code, artifacts, and configurations
• Ensure high availability and resilience of critical systems
• Support incident response and business continuity planning from a security perspective

Basic Qualifications

Technical Expertise

• 2–5 years of experience in infrastructure security or related fields.
• Strong expertise in cloud security (AWS, GCP, Azure) and cloud-native architectures
• Hands-on experience with Kubernetes, containers, and orchestration platforms
• Deep understanding of CI/CD security, supply chain security, and DevSecOps practices
• Proficiency with Infrastructure-as-Code tools (Terraform, Ansible, CloudFormation)
• Experience with security tools: SIEM, vulnerability scanners, IDS/IPS, endpoint protection
• Strong knowledge of network security, encryption, IAM, and secrets management

Compliance & Risk Management

• Experience with compliance frameworks: SOC 2, ISO 27001, NIST, PCI-DSS
• Strong understanding of risk assessment and security frameworks
• Knowledge of data privacy and regulatory requirements

Preferred Qualifications

• Bachelor’s or Master’s degree in Computer Science, Information Security, or related field
• Security certifications such as CISSP, CISM, CCSP, CEH, or cloud security certifications
• Experience with GitOps workflows and tools like GitHub Advanced Security or GitLab Security
• Proficiency in scripting/programming (Python, Go, Bash) for automation
• Experience in regulated industries (finance, healthcare, government)
• Background in SRE or DevOps practices
• Experience securing microservices and serverless architectures
• Strong interest in security research and evolving threat landscapes

About the Role

We're hiring a hands-on Security Analyst to own the day-to-day of our security program across endpoints, cloud, and identity. You'll monitor, investigate, and respond to threats while serving as the first point of contact for employees with security questions. This role has real ownership. You'll operate within established guidelines with appropriate oversight, but the day-to-day security operations are yours to run. We're looking for someone who takes that seriously, someone who can distinguish signal from noise, escalate when it counts, and handle their domain with consistency and care. We're a technical team that moves fast and expects its people to keep up. We want someone who is genuinely curious about how things work, stays current without being told to, and brings ideas rather than waiting for them.

What You'll Do

Daily & Weekly

• Monitor and triage Microsoft Defender alerts across endpoints, identity, and cloud
• Review Intune/MDM compliance dashboards, validate endpoint patch status, and follow up on non-compliant devices
• Monitor Azure Defender for Cloud, Azure Policy, and Entra ID for anomalous activity
• Handle front-line employee security questions and requests

Monthly

• Review access to protected systems and validate permissions remain appropriate
• Perform abuse screening per established runbook
• Execute web application security scans and document findings
• Verify Conditional Access policies are operating as configured and investigate any drift
• Review and adjust web filtering rules and endpoint traffic controls
• Prepare security metrics reports for leadership
• Surface process and tooling improvements to your manager

Quarterly

• Coordinate vulnerability scanning with our third-party security partner; triage results, brief Engineering on findings, and drive remediation to closure within SLA
• Support compliance evidence collection per compliance team direction

Annually

• Own coordination of our penetration test: scoping, scheduling, stakeholder liaison, and remediation tracking
• Support the annual audit evidence collection process

Required Qualifications

• 3–5 years in a hands-on security operations role across real enterprise environments
• Demonstrated experience across the Microsoft Defender suite: Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, and Defender for Cloud
• Working knowledge of Intune/MDM for endpoint compliance
• Experience with Azure security services: Azure Policy and Entra ID (Conditional Access, PIM, audit logs)
• Familiarity with GitHub Actions and/or Azure DevOps
• Experience supporting compliance programs - executing control tasks and contributing to evidence collection
• Strong collaborator - someone peers and stakeholders can rely on
• Genuinely curious - you follow threads, ask why, and don't stop at the surface

 Education
We prefer a Bachelor's degree in a technical field but will seriously consider candidates with an Associate's degree, relevant certifications, or equivalent hands-on experience. Military cybersecurity experience is highly valued.

Preferred Qualifications

• Microsoft certifications: SC-200, SC-300, AZ-500
• Experience with web application security scanning tools
• PowerShell or Python for log analysis and automation

Work Environment

You'll be the dedicated security analyst on an eight-person technical team, working closely with the compliance team, Engineering, IT, and our external security partners. Occasional availability outside business hours for security incidents is expected.

ABOUT THE ROLE:

The Tide Security Engineering team is made up of three core areas: Product Security, Identity, Threat Detection & Response

Product Security consists of application and cloud security experts. Their mission is to protect the products we build, covering everything from secure design reviews to threat modelling and penetration testing, ensuring security is embedded from the ground up.

Threat Detection & Response (this role!) focuses on protecting the company by building a robust detection and automation platform. We’re proactive in our defence, constantly hacking ourselves to improve our security posture and staying ahead of emerging threats. Our goal is to make Tide resilient against the ever-evolving threat landscape.

Identity is responsible for managing Tide's staff identity platform, ensuring that access to systems and infrastructure is secure, seamless, and aligned with modern security practices. The team uses strategies like zero trust, multi-factor authentication, and granular role-based access controls to safeguard our internal operations.

While each area has its own focus, collaboration is key - it's why we share the same Slack channel and hold our standups together as one cohesive team, ensuring alignment and seamless communication across all security functions.

• Supporting the development and implementation of a strategic vision for threat detection, driving the overall direction and priorities for a team of highly talented engineers.
• Getting hands-on with SIEM systems, including creating custom log-parsers for in-house applications, configuring alert rules, performing log analysis and tuning detections to reduce false positives.
• Creating security automations and services to automate mundane tasks; from data enrichment to automatically removing phishing emails from employee mailboxes. We want you to run with the “anything is possible” mantra.
• Continuously hunting for sophisticated threats across our infrastructure, leveraging threat intelligence and innovative detection techniques to stay ahead of attackers. You'll monitor and respond to threats across AWS, GCP, internal applications, and employee endpoints (Windows, macOS).
• Collaborating with cross-functional teams to develop and implement; business-specific threat detection rules. 
• Responsible for ensuring the quality of detections, and uptime of our detection ecosystem through mature test driven development paired with proactive health monitoring capabilities.
• Identifying opportunities to build or enhance internal tools that streamline threat detection processes, improve data visibility, and increase response efficiency.
• Leading complex incident investigations, coordinating efforts across the security, IT, and engineering teams to ensure rapid and effective containment, remediation, and recovery.
• Support as part of the wider security incident response on-call rota.

WHAT WE ARE LOOKING FOR:

• Strong knowledge with one of the following: Splunk, Scanner, Sentinel, SecOps.
• Strong understanding of modern attack and defence techniques which apply to Cloud (AWS, GCP), SaaS (such as Google Workspace and Okta) and desktop (Windows and macOS) environments.
• Passion for passing on knowledge to fellow colleagues.
• Hands-on attitude and the ability to drive solutions to completion.
• Strong experience in security automation, from writing scripts to creating end-to-end automated workflows. Familiarity with SOAR platforms and automating threat detection and response tasks.
• Excellent spoken and written communication skills.
• Experience with writing automation and scripts; bonus points if you have a repository to show-case your work.

WHAT YOU’LL GET IN RETURN:

• Competitive Compensation -  competitive salary and share options
• Time Off – Generous annual leave on top of bank holidays.
• Parental Leave – Paid maternity, paternity, and adoption leave to support your family journey.
• Sabbatical – Extended unpaid and paid leave options after completing milestone years with Tide.
• Health Insurance – Private family insurance with additional OPD coverage and top-up options.
• Life & Accident Cover – Comprehensive accidental and life insurance protection.
• Mental Wellbeing – Access to therapy sessions, courses, meditations, and workshops.
• Volunteering & Development Days – Paid days annually for volunteering or personal growth.
• Learning & Development – Annual budget for books, courses, coaching, and more.
• WOO (Work Outside the Office) – Work from abroad for up to 90 days annually.
• Home Office Setup – Contribution towards setting up your home office
• Laptop Ownership – Keep your old laptop and get a new one when it’s time for a replacement.
• Snacks & Meals – Office perks with snacks, coffee, tea, and lunch (location dependent).

TIDEAN WAYS OF WORKING:

At Tide, we champion a flexible workplace model that supports both in-person and remote work to cater to the specific needs of our different teams. 

While remote work is supported, we believe in the power of face-to-face interactions to foster team spirit and collaboration. Our offices are designed as hubs for innovation and team-building, where we encourage regular in-person gatherings to foster a strong sense of community. 

ABOUT THE ROLE:

The Tide Security Engineering team is made up of three core areas: Product Security, Identity, Threat Detection & Response

Product Security consists of application and cloud security experts. Their mission is to protect the products we build, covering everything from secure design reviews to threat modelling and penetration testing, ensuring security is embedded from the ground up.

Threat Detection & Response (this role!) focuses on protecting the company by building a robust detection and automation platform. We’re proactive in our defence, constantly hacking ourselves to improve our security posture and staying ahead of emerging threats. Our goal is to make Tide resilient against the ever-evolving threat landscape.

Identity is responsible for managing Tide's staff identity platform, ensuring that access to systems and infrastructure is secure, seamless, and aligned with modern security practices. The team uses strategies like zero trust, multi-factor authentication, and granular role-based access controls to safeguard our internal operations.

While each area has its own focus, collaboration is key - it's why we share the same Slack channel and hold our standups together as one cohesive team, ensuring alignment and seamless communication across all security functions.

• Supporting the development and implementation of a strategic vision for threat detection, driving the overall direction and priorities for a team of highly talented engineers.
• Getting hands-on with SIEM systems, including creating custom log-parsers for in-house applications, configuring alert rules, performing log analysis and tuning detections to reduce false positives.
• Creating security automations and services to automate mundane tasks; from data enrichment to automatically removing phishing emails from employee mailboxes. We want you to run with the “anything is possible” mantra.
• Continuously hunting for sophisticated threats across our infrastructure, leveraging threat intelligence and innovative detection techniques to stay ahead of attackers. You'll monitor and respond to threats across AWS, GCP, internal applications, and employee endpoints (Windows, macOS).
• Collaborating with cross-functional teams to develop and implement; business-specific threat detection rules. 
• Responsible for ensuring the quality of detections, and uptime of our detection ecosystem through mature test driven development paired with proactive health monitoring capabilities.
• Identifying opportunities to build or enhance internal tools that streamline threat detection processes, improve data visibility, and increase response efficiency.
• Leading complex incident investigations, coordinating efforts across the security, IT, and engineering teams to ensure rapid and effective containment, remediation, and recovery.
• Support as part of the wider security incident response on-call rota.

WHAT WE ARE LOOKING FOR:

• Strong knowledge with one of the following: Splunk, Scanner, Sentinel, SecOps.
• Strong understanding of modern attack and defence techniques which apply to Cloud (AWS, GCP), SaaS (such as Google Workspace and Okta) and desktop (Windows and macOS) environments.
• Passion for passing on knowledge to fellow colleagues.
• Hands-on attitude and the ability to drive solutions to completion.
• Strong experience in security automation, from writing scripts to creating end-to-end automated workflows. Familiarity with SOAR platforms and automating threat detection and response tasks.
• Excellent spoken and written communication skills.
• Experience with writing automation and scripts; bonus points if you have a repository to show-case your work.

WHAT YOU’LL GET IN RETURN:

• Competitive Compensation -  competitive salary and share options
• Time Off – Generous annual leave on top of bank holidays.
• Parental Leave – Paid maternity, paternity, and adoption leave to support your family journey.
• Sabbatical – Extended unpaid and paid leave options after completing milestone years with Tide.
• Health Insurance – Private family insurance with additional OPD coverage and top-up options.
• Life & Accident Cover – Comprehensive accidental and life insurance protection.
• Mental Wellbeing – Access to therapy sessions, courses, meditations, and workshops.
• Volunteering & Development Days – Paid days annually for volunteering or personal growth.
• Learning & Development – Annual budget for books, courses, coaching, and more.
• WOO (Work Outside the Office) – Work from abroad for up to 90 days annually.
• Home Office Setup – Contribution towards setting up your home office
• Laptop Ownership – Keep your old laptop and get a new one when it’s time for a replacement.
• Snacks & Meals – Office perks with snacks, coffee, tea, and lunch (location dependent).

TIDEAN WAYS OF WORKING:

At Tide, we champion a flexible workplace model that supports both in-person and remote work to cater to the specific needs of our different teams. 

While remote work is supported, we believe in the power of face-to-face interactions to foster team spirit and collaboration. Our offices are designed as hubs for innovation and team-building, where we encourage regular in-person gatherings to foster a strong sense of community. 

ABOUT THE ROLE:

The Tide Security Engineering team is made up of three core areas: Product Security, Identity, Threat Detection & Response

Product Security consists of application and cloud security experts. Their mission is to protect the products we build, covering everything from secure design reviews to threat modelling and penetration testing, ensuring security is embedded from the ground up.

Threat Detection & Response (this role!) focuses on protecting the company by building a robust detection and automation platform. We’re proactive in our defence, constantly hacking ourselves to improve our security posture and staying ahead of emerging threats. Our goal is to make Tide resilient against the ever-evolving threat landscape.

Identity is responsible for managing Tide's staff identity platform, ensuring that access to systems and infrastructure is secure, seamless, and aligned with modern security practices. The team uses strategies like zero trust, multi-factor authentication, and granular role-based access controls to safeguard our internal operations.

While each area has its own focus, collaboration is key - it's why we share the same Slack channel and hold our standups together as one cohesive team, ensuring alignment and seamless communication across all security functions.

• Supporting the development and implementation of a strategic vision for threat detection, driving the overall direction and priorities for a team of highly talented engineers.
• Getting hands-on with SIEM systems, including creating custom log-parsers for in-house applications, configuring alert rules, performing log analysis and tuning detections to reduce false positives.
• Creating security automations and services to automate mundane tasks; from data enrichment to automatically removing phishing emails from employee mailboxes. We want you to run with the “anything is possible” mantra.
• Continuously hunting for sophisticated threats across our infrastructure, leveraging threat intelligence and innovative detection techniques to stay ahead of attackers. You'll monitor and respond to threats across AWS, GCP, internal applications, and employee endpoints (Windows, macOS).
• Collaborating with cross-functional teams to develop and implement; business-specific threat detection rules. 
• Responsible for ensuring the quality of detections, and uptime of our detection ecosystem through mature test driven development paired with proactive health monitoring capabilities.
• Identifying opportunities to build or enhance internal tools that streamline threat detection processes, improve data visibility, and increase response efficiency.
• Leading complex incident investigations, coordinating efforts across the security, IT, and engineering teams to ensure rapid and effective containment, remediation, and recovery.
• Support as part of the wider security incident response on-call rota.

WHAT WE ARE LOOKING FOR:

• Strong knowledge with one of the following: Splunk, Scanner, Sentinel, SecOps.
• Strong understanding of modern attack and defence techniques which apply to Cloud (AWS, GCP), SaaS (such as Google Workspace and Okta) and desktop (Windows and macOS) environments.
• Passion for passing on knowledge to fellow colleagues.
• Hands-on attitude and the ability to drive solutions to completion.
• Strong experience in security automation, from writing scripts to creating end-to-end automated workflows. Familiarity with SOAR platforms and automating threat detection and response tasks.
• Excellent spoken and written communication skills.
• Experience with writing automation and scripts; bonus points if you have a repository to show-case your work.

WHAT YOU’LL GET IN RETURN:

• Competitive Compensation -  competitive salary and share options
• Time Off – Generous annual leave on top of bank holidays.
• Parental Leave – Paid maternity, paternity, and adoption leave to support your family journey.
• Sabbatical – Extended unpaid and paid leave options after completing milestone years with Tide.
• Health Insurance – Private family insurance with additional OPD coverage and top-up options.
• Life & Accident Cover – Comprehensive accidental and life insurance protection.
• Mental Wellbeing – Access to therapy sessions, courses, meditations, and workshops.
• Volunteering & Development Days – Paid days annually for volunteering or personal growth.
• Learning & Development – Annual budget for books, courses, coaching, and more.
• WOO (Work Outside the Office) – Work from abroad for up to 90 days annually.
• Home Office Setup – Contribution towards setting up your home office
• Laptop Ownership – Keep your old laptop and get a new one when it’s time for a replacement.
• Snacks & Meals – Office perks with snacks, coffee, tea, and lunch (location dependent).

Glean is looking for an Application Security Engineer with a primary focus on ensuring that our entire technology stack is free of software vulnerabilities (CVEs). This role is responsible for securing our base OS images, ensuring all open-source software (OSS) dependencies are scanned and patched, and integrating cutting-edge security tools into our CI/CD pipeline. The ideal candidate will drive the adoption of solutions like Google’s Assured Open Source Software (OSS) and explore alternative approaches to enhance software security.

You will:

• Implement and improve the vulnerability management lifecycle, ensuring our entire tech stack is free from known vulnerabilities/CVEs.
• Continuously scan, monitor, and patch OSS dependencies to mitigate supply chain risks and enforce best practices for dependency management.
• Work closely with engineering teams to integrate state-of-the-art SAST, DAST, and dependency scanning tools into the CI/CD pipeline to detect and remediate vulnerabilities early.
• Define and maintain best practices for secure coding to ensure all code developed by Glean engineers is free from vulnerabilities.
• Ensure secure posture in SDLC by securing designs, conducting secure code reviews and penetration testing the features.
• Develop automated security validation tests to enforce vulnerability-free deployments across the stack.
• Lead the adoption and, if necessary, develop custom security solutions to manage and mitigate security risks at scale.
• Provide security guidance, training, and mentorship to engineering teams to foster a security-first culture at Glean.

About you:

• BA/BS in Computer Science, Cybersecurity, or a related field (or equivalent industry experience).
• 5+ years of experience in application security and vulnerability management.
• Deep understanding of software security vulnerabilities, including CVEs, OWASP Top 10, and supply chain risks.
• Deep understanding security design principles including but not limited to authentication, authorisation, RBAC, database security.
• Experience with SAST, DAST, dependency scanning, and vulnerability management tools (e.g., Snyk, GitHub Dependabot, Trivy, Clair, Burp Suite, OWASP ZAP).
• Strong familiarity with package managers (npm, pip, Maven, Go modules) and securing open-source dependencies.
• Coding experience in languages such as Go, Python, Java, or C++ to develop security test cases and tooling.
• Hands-on experience with cloud-native security best practices across AWS, GCP, or Azure.
• Knowledge of container security, Kubernetes security, and securing microservices architectures.
• Ability to lead cross-functional initiatives and drive security adoption within engineering teams.
• A strong proactive approach to security, identifying risks before they become problems.
• Excellent problem-solving skills and the ability to balance security with performance and usability.
• Experience working in fast-paced, highly collaborative environments where security is a shared responsibility.
• Passion for open-source security and keeping up with the latest trends in software vulnerability management.

Location:

• This role is hybrid (3 days a week in our Bangalore office)

Compensation & Benefits:

Compensation offered will be determined by factors such as location, level, job-related knowledge, skills, and experience. Certain roles may be eligible for variable compensation, equity, and benefits.

We are a diverse bunch of people and we want to continue to attract and retain a diverse range of people into our organization. We're committed to an inclusive and diverse company. We do not discriminate based on gender, ethnicity, sexual orientation, religion, civil or family status, age, disability, or race.

#LI-HYBRID

Position Overview

We are seeking a proficient Embedded Security Engineer to join our team and contribute to the protection of our models deployed on robotic hardware. You will be responsible for conducting comprehensive threat modeling and security assessments, as well as supporting our engineering teams in adhering to established security standards and requirements. This role involves both software engineering techniques and deep learning methods to encode/encrypt trained models. A blend of technical acumen and collaborative skills is essential, as you will develop solutions to identified risks, write test cases for security controls, and actively participate in offensive security assessments.

Responsibilities

• Conduct detailed threat modeling and security assessments of critical assets.
• Regularly update threat models to reflect evolving threats and changes in the business environment.
• Identify and explore vulnerabilities in critical software components used across our environment.
• Create and implement technical solutions to mitigate identified risks, and maintain test cases to ensure the effectiveness and resilience of the solutions.
• Collaborate with engineering teams to ensure compliance with defined security standards and requirements.
• Provide support in the implementation of security measures.
• Lead penetration tests and red team exercises.

Preferred Qualifications

• BS, MS or higher degree in Computer Science, Robotics, Engineering or a related field, or equivalent practical experience.
• Proficiency developing higher-level languages (e.g., PHP, Python, C++, or Java).
• Experience with deep learning software, frameworks, and APIs (e.g., PyTorch, etc.).
• Experience with enterprise security.
• Proven experience in threat modeling, security assessments, and penetration testing.
• Strong understanding of cybersecurity principles, frameworks, and standards.
• Understanding and experience with securing transfer and storage of deep neural network models.

Job Role Pointers:

• 5+ years’ of experience in AWS app and infra security, Vulnerability Assessment and Penetration testing.
• Should have participated in at least 2 IT Security Audits, preferably one of which should be in the last 12 months
• Experience in working heterogeneous work environments and AWS cloud - product based company experience is good to have
• The security engineer will be part of the cloud infra & security team that shall manage all security and compliance requirements for e-commerce products.
• Conduct and participate in security audits, identify gaps in web security, application security, mobile app security, Network security and IT infrastructure security, mitigate risks using right controls
• The team members shall prepare VAPT (Vulnerability Assessment & Penetration Testing) reports using defined templates and assist the management for finalization of audit reports. Co-ordinate to get the findings resolved in specific time
• The team members shall prepare the security checklists, test cases, and test scenarios to perform the security audit.

Desirable Skills & Experience:

• Experience in analysing and in identifying the vulnerabilities in apps, aws resources and configurations.
• Hands-on experience in web application, Mobile App and network Vulnerability Assessment & Penetration Testing using industry standard tools such as Vulnerability Scanners for e.g. Qualys, Nessus, WebInspect, Acunetix, Metaexploit, Burp Suite Pro, Netsparker etc.
• Hands-on linux admin and security experience - hardening of servers as per industry standards · Experience working with OWASP (Open Web Application Security Project ) security requirement and implementing them
• Should have the ability to stay organized, and possess excellent communication skills.
• Perform or co-ordinate penetration tests on computer systems, networks and applications
• Perform physical security assessments of systems, servers and other network devices to identify areas including firewall maintenance and administration etc.
• Research, evaluate, document and discuss findings with Eng teams and management.
• Review and provide feedback for information security issues and fixes.
• Establish improvements for existing security services, including hardware, software, policies and procedures.
• Identify areas where improvement is needed in security education and awareness for users.
• Be sensitive to corporate considerations when performing testing (i.e. minimize downtime and loss of employee productivity).
• Stay updated on the latest malware and security threats · AWS Security experience is mandatory.
• Experience working with XDR/EDR and microsoft O365 security and SaaS security.

Necessary certifications - CCNA/CompTIA+ or similar. AWS Security speciality or similar.

Senior Manager, Engineering - Application Security

Want to lead a global team responsible for the most important product features – availability, reliability & security?  Sumo’s SRE program focuses on continual data-driven evolution and improvement of the reliability, security, and efficiency of our global scale technological presence. We are looking for a great leader with a passion for site reliability, continuous technology improvement, and reducing the operational workload of our own engineers - as well as our customers who leverage our products for their own monitoring and reliability.

Responsibilities

• AppSecurity Program:
• Establish and evolve strategies and processes for the product and engineering organization to meet security, privacy, and compliance objectives
• Guide leadership and teams in the risk-based prioritization of compliance, privacy, and security efforts, and maintain respective backlogs and roadmaps
• Coordinate with team leads, managers, and individual contributors to ensure initiatives are prioritized based on risks and rewards, stay on track by identifying and removing blockers, and get completed
• Define OKRs and build and deliver program metrics and communications to provide updates to stakeholders
• Coordinate and support application security initiatives (such as, regular threat modeling and the mitigation of dependency vulnerabilities) across the product and engineering organization
• Help product teams develop secure applications for the Sumo Logic platform.
• Integrate and implement solutions improving Sumo Logic’s security posture.
• Lead security reviews and penetration tests at design and implementation stages.
• Partner with the Security Operations Center (SOC) and Compliance team on our security and compliance posture, vulnerability management, and threat modeling of our tech stack.
• Educate product teams on secure development best practices and Quality Engineering teams on continuous improvement of security testing.

• Reliability Program: 
• Drive the program that maintains excellent uptime numbers for our services.
• Manage error budgets and associated policies for key product SLOs. 
• Promote blameless post-mortem culture combined with developer operational accountability.
• Continuously reduce operational workload for engineers by means of infrastructure improvements and automation.  
• Collaborate to lead the reliability programs with SRE leaders across geo.
• Team Leadership: 
• Lead and grow a global team of SREs adept at building extremely high-volume, fault-tolerant, efficient, and scalable backend systems.
• Technical Vision: 
• Partner with our technical leadership team to review choices on an ongoing basis, in anticipation of increased scale and ever-evolving technology to meet the demands of growing business. Leverage technical skills to successfully analyze and improve the efficiency, scalability, and reliability of our backend systems.

Required Qualifications and Skills

• B.S. in Computer Sciences or related discipline (M.S., or Ph.D. is a plus).
• Minimum 8+ years of industry experience with a proven track record of ownership, delivery, and operational excellence.
• Minimum 3+ years in a management role.
• Experience being responsible for key SLOs of a cloud-based SaaS: availability, uptime, performance, and security.
• Experience in multi-threaded programming and distributed systems.
• Object-oriented programming experience, for example in Java, Scala, Ruby, or C++.
• Experience with high volumes of data using the latest technologies such as Kafka, Kubernetes and Docker.
• Agile software development experience (test-driven development, iterative and incremental development). Experience in big data and/or 24x7 commercial service is highly desirable.
• Hands-on experience with public cloud Infrastructure-as-a-service and Platform-as-a-service offerings - Amazon Web Services, Google Cloud Platform, etc.
• Good to have:
• Functional knowledge of global information security and privacy regulations (such as, GDPR, CCPA, and FISMA), industry standards (such as, ISO/IEC 27001, PCI DSS, and SOC2), and best practices (such as, OWASP projects, threat modeling methodologies, risk and privacy impact assessments)
• Experience with cloud technology environments and contemporary software engineering stacks
• Ability to influence across all levels of an organization, strong written and verbal communication and organizational skills, and demonstrated success in cross-functional collaboration with internal and external stakeholders
• Professional certifications (such as, CIPM, CISM, and CISSP)

About Us

Sumo Logic, Inc. helps make the digital world secure, fast, and reliable by unifying critical security and operational data through its Intelligent Operations Platform. Built to address the increasing complexity of modern cybersecurity and cloud operations challenges, we empower digital teams to move from reaction to readiness—combining agentic AI-powered SIEM and log analytics into a single platform to detect, investigate, and resolve modern challenges. Customers around the world rely on Sumo Logic for trusted insights to protect against security threats, ensure reliability, and gain powerful insights into their digital environments. For more information, visit www.sumologic.com.

Sumo Logic Privacy Policy. Employees will be responsible for complying with applicable federal privacy laws and regulations, as well as organizational policies related to data protection.

Lead Security Engineer

Couchbase — Bangalore, India | Information Security | Full-Time

About Couchbase

As industries race to embrace AI, traditional database solutions fall short of rising demands for versatility, performance, and affordability. Couchbase is leading the way with Capella, the developer data platform for critical applications in our AI world. By uniting transactional, analytical, mobile, and AI workloads into a seamless, fully managed solution, Couchbase empowers developers and enterprises to build and scale applications with unmatched flexibility, performance, and cost-efficiency—from cloud to edge. Trusted by over 30% of the Fortune 100, Couchbase is unlocking innovation, accelerating AI transformation, and redefining customer experiences. Come join our mission.

The Role

We are seeking a driven and versatile Lead Security Engineer to join Couchbase's global Information Security team as our first security hire in Bangalore. This is a unique opportunity to be foundational to Couchbase's 24x7 security coverage and grow alongside a world-class security organization.

You will be a broad contributor—supporting and partnering our Security Operations, GRC, Product and Application Security teams. Working closely with Engineering, Cloud, and GTM functions, you'll gain hands-on exposure across the full security lifecycle. This role is ideal for someone who thrives across disciplines, moves between strategic and tactical work with ease, and wants to help build something meaningful from the ground up.

As Couchbase's security presence in Bangalore grows, you will be instrumental in expanding timezone coverage for security monitoring, incident response, and compliance operations—serving as a key link in our global, follow-the-sun security model.

Key Responsibilities

Security Operations

• Lead and own the timezone-extended coverage for security monitoring, alert triage, and initial incident response as the primary regional point of contact for the global security model.
• Drive day-to-day security operations including threat detection, monitoring, and escalation using SIEM and other security tooling.
• Assist with vulnerability management workflows—identification, prioritization, and tracking remediation in collaboration with engineering and cloud teams.
• Contribute to the review and improvement of existing security processes and tooling, including SIEM, DLP, endpoint security, email security, and vulnerability management platforms.
• Support security incident response planning and execution, interfacing with Engineering, Cloud, and SOC teams during active incidents.
• Help maintain and improve business continuity and disaster recovery documentation and runbooks.

Governance, Risk & Compliance (GRC)

• Contribute to GRC activities by focusing on audit evidence collection, documentation, and the continuous improvement of policies/standards under GRC team guidance.
• Assist with compliance initiatives including SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR, CCPA, and other relevant frameworks.
• Help track and document security risks, control exceptions, and remediation plans across the enterprise.
• Contribute to audit evidence collection and documentation to support external assessments and certifications.
• Support privacy-by-design efforts, including data privacy assessments and alignment with evolving global data regulations.
• Assist in building governance frameworks for AI/ML workloads and data pipelines, ensuring responsible and compliant adoption of AI technologies.

Product & Application Security

• Provide support for Product/AppSec enablement efforts by assisting with the integration of application security tooling (SAST, DAST, SCA) into CI/CD pipelines.
• Partner with Product Security engineers in conducting security architecture reviews and threat modeling for Couchbase's Capella cloud platform and database products.
• Support the execution of static and dynamic code scan reviews and assist with triaging and tracking findings.
• Contribute to the management of Couchbase's bug bounty program, including triage, validation, and researcher communication.
• Assist with the planning and coordination of application penetration tests and tracking remediation of findings within defined SLAs.
• Help engineering teams understand and apply secure coding principles, including OWASP Top 10 and OWASP SAMM.
• Assist in completing security sections of RFP questionnaires and customer security reviews.

Cross-Functional Collaboration

• Build strong working relationships with Engineering, Product, Cloud, Legal, and Compliance teams to support security initiatives across the organization.
• Work with customers as needed to explain security policies or address product-related security questions.
• Champion a "security is everyone's job" mindset and help embed security into Couchbase's engineering-driven culture.
• Contribute to security metrics and reporting to help track maturity and drive continuous improvement.

Qualifications

Required

• 6–9 years of hands-on experience in information security spanning two or more domains: GRC, product/application security, or security operations.
• Working knowledge of major compliance frameworks (SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR, CCPA).
• Familiarity with application security principles including OWASP Top 10, threat modeling, SAST/DAST tooling, and secure SDLC practices.
• Practical experience with public cloud security on at least one of AWS, Azure, or GCP.
• Experience with security tooling such as SIEM (Splunk, Rapid7, AlienVault), endpoint security (SentinelOne, CrowdStrike), or DLP platforms (Netskope, Proofpoint).
• Strong written and verbal communication skills with the ability to collaborate effectively across engineering, product, and business teams.
• Growth mindset, intellectual curiosity, and a genuine desire to broaden expertise across multiple security disciplines.

Nice to Have

• Experience with bug bounty program management, penetration test coordination, or vulnerability management.
• Familiarity with CNAPP tools (Wiz, Sysdig, Prisma Cloud) or cloud-native security tooling.
• Understanding of IAM, key management, encryption, and network security fundamentals.
• Experience with MDM tools (Kandji, Jamf, WorkspaceOne) and automating workflows/processes.
• Hands-on experience working within a GRC function on audits, risk assessments, or policy management.
• Exposure to AI/ML security considerations or data governance in a cloud environment.
• Industry certifications such as Security+, CISSP, CISM, CEH, or equivalent.
• Bachelor's degree in Computer Science, Information Security, or a related field.

Why This Role

This is a rare chance to join a lean, high-caliber security team at a pivotal moment—both for Couchbase and for the Bangalore office. You won't be siloed. You'll work across GRC, product security, AppSec, and SecOps, learning from specialists in each domain while contributing meaningfully from day one. As the team grows, so will your scope and influence.

Couchbase is trusted by over 30% of the Fortune 100 to power mission-critical applications. Security isn't an afterthought here—it's foundational to everything we build.

What does the team do? 

Opportunity is part of the evolving cyber security group which is laser focussed on setting up industry benchmarks in managing & guarding against digital risks in a “Cloud Native - DevOps Only” AI environment. It is a lean-mean-special action group where every cyber sentinel gets an opportunity to work across domain, has an independence to challenge status quo & evolve cyber practices to next level of maturity. Our core competencies revolve around “Product & Platform security” , “Cloud Native Risk Management” and “Detection & Response”.

What you will be doing? 

Application Security Testing & DevSecOps

• Perform application security testing across Web, API, Mobile (Android & iOS), TV and Cloud services, including vulnerability assessments and penetration testing.
• Validate and triage security findings through exploit verification and risk‑based severity assessment.
• Own and operate CI/CD security controls, including SAST, DAST, SCA, secrets scanning, and IaC scanning.
• Build and maintain security gates (e.g., Chekmarx or equivalent) with a focus on automation, accuracy, and developer usability.
• Conduct manual security code reviews for APIs and services written in Java, Python, and Node.js.
• Review application designs for authentication, authorization, data protection, and API security best practices.
• Automate security workflows using scripts and APIs to standardize testing and reduce manual effort.
• Partner with engineering teams to drive timely, risk‑appropriate remediation and prevent repeat vulnerabilities.

AI / GenAI Security

• Apply AI Secure SDLC practices for LLM-based features, including prompt design, tool/function usage, and safe integration patterns.
• Assess and mitigate OWASP LLM Top 10 risks.
• Review and maintain secure prompt templates, including system prompt hardening and context scoping.
• Implement practical AI guardrails (output validation, policy checks, basic jailbreak and abuse detection).
• Perform AI red teaming and adversarial testing using tools such as Garak, PyRIT, and custom test cases.
• Review RAG implementations to ensure authorization-aware retrieval, tenant isolation, and reduced data leakage risk.
• Identify and reduce sensitive data exposure risks in embeddings and ingestion pipelines.
• Conduct AI-focused threat modeling using OWASP LLM Top 10, STRIDE, and MITRE ATLAS as reference frameworks.

What We’re Looking For (Required)

• Minimum 7 years of experience in Application Security, Penetration Testing, DevSecOps, or Security Engineering.
• Proven hands-on ability with SAST/DAST/SCA, CI/CD security gates, and vulnerability triage/remediation workflows.
• 2–3 years’ experience building and managing security gating in Checkmarx (or equivalent).
• 2–3 years’ experience performing manual security code review (APIs/services; common languages: Java/Python/Node.js).
• Familiarity with OAuth2, OIDC, JWT, mTLS, API gateways, and service-to-service identity.
• Strong knowledge of OWASP Top 10 Mobile, OWASP Top 10 LLM.
• Strong experience with common testing tools: Burp Suite, OWASP ZAP, SQLMap, Kali (and similar).
• Scripting/automation skills using Python, plus Bash/PowerShell familiarity.
• Working knowledge of Docker/Kubernetes, cloud-native patterns, and secrets management basics.
• Solid communication skills—ability to write clear findings, influence engineering decisions, and partner effectively.

AI-Specific Technical Skills (Expected Competency)

• Hands-on familiarity with LLM integrations and Python AI ecosystems (e.g., LangChain / orchestration frameworks).
• Understanding of RAG pipelines and vector database concepts (e.g., Pinecone, FAISS, Milvus or equivalent).
• Ability to design/validate guardrails (policy allow/deny, jailbreak detection, output validation, safe tool calling).
• Familiarity with AI security testing patterns (prompt injection testing, data leakage testing, agent/tool abuse testing).

Preferred / Nice-to-Have

• Bug bounty / responsible disclosure recognition (Hall of Fame, awards).
• Experience deploying and scaling open-source security tools in production.
• Certifications: OSCP, OSCE, GWAPT, GPEN, CSSLP
• Any AI security-focused training (LLM security, RAG security, adversarial testing, ATLAS/LLM Top 10 programs).