Staff Security Engineer
On-site · Bengaluru, Karnataka, India
Job Summary
Staff Security Engineer to drive security strategy across product, cloud, infrastructure, and enterprise environments; lead security architecture reviews, embed security in the software development lifecycle, design and build security tooling, drive secure-by-design principles, conduct vendor security assessments, manage cloud and data security, lead incident response and threat detection, and influence cross-functional engineering decisions. Preferred: experience in e-commerce/retail tech, red teaming, IaC/policy-as-code, and security certifications.
Required Qualifications
- 7+ years of experience in security engineering, application security, cloud security, or related technical security disciplines
- Strong hands-on expertise across multiple security domains including Application Security, Cloud Security, Detection & Response, and Infrastructure Security
- Experience conducting vulnerability assessments and penetration testing across web, API, and mobile applications
- Deep knowledge of security testing technologies including SAST, DAST, SCA, and CI/CD security tooling
- Strong experience securing cloud environments (AWS preferred)
- Experience with EDR, DLP, SIEM, and threat detection technologies, including platforms such as CrowdStrike
- Deep understanding of threat modeling, secure architecture design, and modern attack techniques
- Experience leading architecture reviews and influencing engineering decisions at scale
- Strong programming or scripting skills using Python, Go, or similar languages
- Excellent communication skills with the ability to communicate technical risks to both engineering teams and senior leadership
- Proven ability to lead complex security initiatives and influence cross-functional stakeholders
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.