Security Engineer

Razorpay was founded by Shashank Kumar and Harshil Mathur in 2014. Razorpay is building a new-age digital banking hub (Neobank) for businesses in India with the mission is to enable frictionless banking and payments experiences for businesses of all shapes and sizes. What started as a B2B payments company is processing billions of dollars of payments for lakhs of businesses across India. 

We are a full-stack financial services organisation, committed to helping Indian businesses with comprehensive and innovative payment and business banking solutions built over robust technology to address the entire length and breadth of the payment and banking journey for any business. Over the past year, we've disbursed loans worth millions of dollars in loans to thousands of businesses. In parallel, Razorpay is reimagining how businesses manage money by simplifying business banking (via Razorpay X) and enabling capital availability for businesses (via Razorpay Capital). 

The Role:

We are currently seeking a motivated and skilled Security Engineer to join our team. In this role, you will focus on identifying and fixing vulnerabilities, primarily on APIs, web applications, and mobile apps. Additionally, you will play a critical role in triaging bug bounty reports, maintaining our robust security infrastructure, and protecting our customers' data.

Roles and Responsibilities:

• Conduct internal penetration testing and vulnerability assessments on our web and mobile applications, APIs, and other key systems.
• Identify potential vulnerabilities and work with the broader engineering team to implement appropriate countermeasures and enhance security protocols.
• Manage and respond to bug bounty reports, working to triage, validate, and prioritise findings.
• Develop and maintain documentation related to security tests, incidents, and resolution steps.
• Collaborate with teams across the organisation to promote security awareness and ensure compliance with security policies and standards.

Mandatory Qualifications:

• 1-3 Years of experience
• Bachelor's degree in Computer Science, Cybersecurity, or a related field.
• Proven experience in offensive security, with a focus on web and mobile application security.
• Familiarity with common security libraries, security controls, and common security flaws.
• Experience with bug bounty programs, vulnerability management, and incident response.
• Proficiency in one or more programming languages such as python, bash, go, etc.
• Familiarity with security technologies, including firewalls, intrusion detection systems, anti-virus software, and authentication systems.
• Excellent problem-solving skills, along with strong verbal and written communication skills.
• Certification such as Offensive Security Certified Professional (OSCP) or Certified Ethical Hacker (CEH) is a plus.

Location: Bangalore

Razorpay believes in and follows an equal employment opportunity policy that doesn't discriminate on gender, religion, sexual orientation, colour, nationality, age, etc. We welcome interests and applications from all groups and communities across the globe.
  Follow us on LinkedIn & Twitter