Your Role
- Conduct deep-dive security assessments, including threat modeling, VAPT, and manual code reviews for high-throughput trading applications and APIs
- Integrate and automate security gates (SAST, DAST, SCA, container scanning) directly into CI/CD pipelines to ensure continuous validation
- Design and implement Zero Trust cloud architectures, managing least-privilege IAM policies, network segmentation, and automated secrets management
- Secure containerized workloads and Kubernetes clusters, using Policy-as-Code (Terraform, OPA, Checkov) to remediate infrastructure misconfigurations
- Monitor security posture and respond to incidents using SIEM and CSPM tools, performing root cause analysis to prevent recurrence
- Collaborate with engineering teams to remediate vulnerabilities, define secure coding standards, and drive security awareness
Qualifiers
- 5+ years of experience in Application Security, Cloud Security, or Security Engineering, specifically within Fintech or high-growth tech environments
- Hands-on mastery of security tooling, specifically Burp Suite Pro, Semgrep, SonarQube, and OWASP ZAP
- Knowledge of fintech compliance frameworks (SEBI, RBI, PCI-DSS, ISO 27001, SOC 2)
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
