Security Engineer: II/ III/ IV
Bengaluru, Karnataka
Applications have closed
The security team at Meesho is like the Avengers to Meesho's S.H.I.E.L.D.
After all, when 5% of Indian households shop with us, it’s important to build resilient systems to manage millions of orders every day. We’ve done this – with zero downtime! 😎
Sounds impossible? Well, that’s the kind of Engineering muscle that has helped Meesho become the e-commerce giant it is today. We value speed over perfection, and see failures as opportunities to become better. We’ve taken steps to inculcate a strong ‘Founder’s Mindset’ across our engineering teams, making us grow and move fast.
We place special emphasis on the continuous growth of each team member - and we do this with regular 1-1s and open communication. As Security Engineer, you will be part of self-starters who thrive on teamwork and constructive feedback.
We know how to party as hard as we work! If we aren’t building unparalleled tech solutions, you can find us debating the plot points of our favourite books and games – or even gossipping over chai. So, if a day filled with building impactful solutions with a fun team sounds appealing to you, join us.
About the Role
As our Security Engineer: II/ III/ IV, you’ll ensure Meesho’s products and services are safe and secure in production environments. On a typical day, you’ll conduct various tests to pick out the best security practices and to challenge existing ones.
As part of the Security Engineering team, you’ll lead and own the overall Information Security architecture and program.
What you will do
- Exploit security flaws and vulnerabilities with attack simulations on multiple application platforms like Web, iOS and Android
- Work with the various engineering groups and teams to provide solutions to technical risks
- Assess technologies in networks, applications, code reviews in the release management cycle
- Perform vulnerability assessments and penetration testing by utilising tools – commercial and open source
- Perform, review and analyse security vulnerability data to identify applicability and false-positives
- Conduct penetration testing in line with Open Web Application Security Project (OWASP)
- Write technical reports that include suggested resolutions for identified problem areas and perform operational risk assessments
- Conduct API, Dashboards Security Testing
What you will need
- Bachelor's/Master's in any field
- 3-5 years of Application, Network and Infra Security experience
- Proficiency in Security Pen Testing methodologies including automated scans and manual methods
- Knowledge of at least one automated testing suite such as Burp, Nexpose, ZAP
- Hands-on Experience with Network analysis tools
- Understanding of Web Servers and HTTP
- In-depth understanding of OWASP top 10 vulnerabilities
- Basic understanding of PHP, Javascript, Golang, Python, NodeJS
- Knowledge of TCP/IP networking including IP classes, subnets, NAT
- Understanding of SSL Handshake and Certificates, DNS, and DHC and Network troubleshooting
- Proficiency in coding languages such as HTML and CSS
- Experience with Linux Flavours, Cloud Infra Security issues in Cloud Technologies (AWS, GCP, Azure)
- Experience with Docker and containerisation technologies
- Knowledge and understanding of basic Information Security Principles
- Understanding of cryptography fundamentals
Plusses
Meesho is India’s fastest-growing e-commerce company. We started in 2015 with the idea of helping mom & pop stores to sell online. Today, 5% of Indian households shop with us on any given day. We’ve helped over 15 million individual entrepreneurs start online businesses with zero investment. We’re democratizing internet commerce by offering a 0% commission model for sellers on our platform — a first for India. We aim to become the e-commerce destination for Bharat.
We’re currently valued at $4.9 billion with marquee investors supporting our vision. Some of them include Sequoia Capital, Softbank, Fidelity, Proses Ventures, Facebook, and Elevation Capital. We were also featured in Y Combinator’s 2021 Top Companies List and were the only Indian startup to make it to Fast Company’s The World’s 50 Most Innovative Companies in 2020. We ranked 6th in Linkedin’s Top Startups List 2021. Our strongest asset is our people. We have gender-neutral and inclusive policies to promote our people-first culture. Please check out meesho. careers for our openings.
Our Mission Democratise internet commerce for everyone
Our VisionEnable 100M small businesses in India to succeed online
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Android APIs Application security AWS Azure Cloud Cryptography DNS Docker E-commerce Exploit GCP Golang iOS JavaScript Linux Node.js Open Source OWASP Pentesting PHP Python TCP/IP Vulnerabilities
Perks/benefits: Career development Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open Forensics-related jobs