Sr. Product Security Engineer

Job Title: Sr. Product Security Engineer
Locations: Bangalore
Reports to: Sr. Manager, Cloud Operations

A quick snapshot…
Conga is looking for a Senior Product Security Engineer who can support, enhance, and automate cloud infrastructure platforms and software. You will be a part of the Cloud Engineering team and responsible to build, maintain, upgrade, and continuously improve cloud networks and cloud-based systems. You will partner with engineering, product, and operations teams to cultivate a secure CI/CD mindset and develop practical automation solutions. You will also build the necessary capacity to support engineering, product, and cloud operations teams throughout the software development lifecycle.

Why it’s a big deal…
A Senior Product Security Engineer or a Cloud Security Engineer uses technical guidance and engineering best practices to securely build and scale cloud-native applications and configure network security defenses within the cloud environment. You are responsible for the smooth operation of secure cloud infrastructure, platforms, and software using cloud technology to provide data protection, container security, networking, system administration, and zero-trust architecture. All of this is vital to our operation as our customers need to have a secure and reliable method to access their data.

Are you the person we’re looking for?

Related experience.  You should have a minimum of 5+ years of experience and you will monitor, triage, and resolve security alerts promptly and ensure that every alert is investigated and resolved quickly. Adopt, implement, and enforce Cloud Security Posture Management (CSPM) standards and best practices. You will develop, continuously improve, and ensure compliance with controls built for the cloud-native platform.

Vulnerability and Security threat analysis. You’ll participate in security audits, and pen testing, collect evidence and remediate vulnerability findings as per security SLAs (Service Level Agreements). Implement and maintain security controls and compliance policies to secure and protect workloads running in public clouds. Security threat analysis, hunting, detection, and response are the key responsibilities.

Threat Intelligence and Security Monitoring. You should be able to demonstrate creativity and out-of-the-box thinking to continuously improve the organization's threat intelligence, security monitoring, detection, and response capabilities. Assist with image/ instance hardening and reduce the attack surface of various images and endpoints.

CSPM and Risk Management. You’ll implement security and compliance tools and technologies to improve security posture management, public cloud platforms (AWS, Azure, and/or IBM or GCP) management, Risk management, and compliance to meet requirements.

Education. A bachelor’s degree in Engineering or equivalent