Senior Security Engineer

About Media.net

Media.net is a leading global ad tech company, building innovative products and solutions for advertisers and publishers. Media.net creates the most transparent and efficient path for ad budgets to become publisher revenue, while delivering meaningful value to advertisers, publishers, app developers, and end users across the open web.

We are one of the world's largest independent contextual advertising businesses, with one of the industry's most comprehensive advertising technology portfolios. Media.net powers major publishers and ad-tech platforms across formats, including display, video, mobile, native, search, and local. Our platform manages high-quality ad supply across 500,000+ websites and is licensed by the biggest publishers, ad networks, and technology partners worldwide.

Beyond our core advertising business, Media.net also operates at scale in performance-driven consumer acquisition, app development and distribution, and strategic technology investments. These efforts are supported by one of the world's largest independent software development engines, enabling us to innovate rapidly and build products used across global markets.

Media.net is home to 1,300+ employees, with key operations across North America, Europe, and Asia. Our US headquarters is in New York, and our global headquarters is in Dubai. Across 50+ demand partners, 21K+ publishers, and a growing portfolio of products and services, we take great pride in driving trusted, transparent, and scalable results

What is the job like

At Media.net, we run large k8s clusters with 1000s of nodes across many regions on cloud & on-prem. Your role within the security team is to deploy, manage security tooling and promote secure practices. You will work with Platform SREs closely to deploy and manage security tools & pipelines platform wide for SDLC, SBOM, SIEM, Runtime security & forensic requirements.

Core activities include,

• Shaping the scope and expertise for security practices across teams.
• Building security into our infrastructure, tools, services, and processes working with Platform SREs and Application development teams.
• Driving design, implementation, and support of security tooling to meet our compliance requirements.
• Developing policies and procedures that improve overall platform security.
• Security Incident response, remediation and conducting forensics.
• Audit compliance, Automate manual efforts, Build dashboards for tracking CVEs, Vulnerabilities , Internal security events.

Who should apply for this role

• B.Tech/M.Tech or Equivalent in Computer Science, Information Technology, or a related field.
• 3+ years of experience in handling services in a large-scale distributed system.
• Deep understanding of network stack (e.g., TCP/IP, routing, network topologies and hardware, SDN, etc.)
• Deep understanding of cloud native systems & security practices.
• Programming / Scripting (Python, Go, Ruby or preferred scripting languages) and automation skills.
• Production experience with Kubernetes, its deployment patterns with a bent towards DevSecOps.
• Infrastructure as code (Ansible and Terraform).
• Knowledge of Relational & NoSQL databases.
• Experience with security tools such as Wazuh, Trivy, Falco, DefectDojo etc.
• Experience with VAPT , Penetration testing is a plus.
• One or more CI tools like Jenkins, gitops methodologies and CD tools like ArgoCD/Flux.
• Centralized logging systems, metrics, and tooling frameworks such as Loki, Prometheus, and Grafana.
• Ability to work independently and own problem statements end-to-end.
• Great communication, interpersonal and teamwork skills.
• Adaptable to working in a fast-paced environment and alter priorities as per business needs.