A fast-growing cybersecurity company focused on delivering high-quality offensive security solutions.
Security Automation Engineer
Location
India
Posted
21 days ago
Salary
0
Seniority
Mid Level
Job Description
Security Automation Engineer
BreachLock
Role Description We are currently hiring for our Engineering team based out of our Hyderabad Offshore Development Center (ODC). - Thorough knowledge of penetration testing on a variety of systems, such as web applications, networks, mobile apps, IoT devices, and APIs including the services layer segments with REST/SOAP/GraphQL APIs, ESB, Middleware, or other channels to identify and exploit vulnerabilities. - Strong understanding of cloud security for environments such as AWS, Azure, GCP, and others. - Capable of researching and staying updated on current security vulnerabilities in order to create proof-of-concept (PoC) or scripts for automated detection. Proficient in proactively addressing emerging threats through continuous monitoring and research. - Develop and maintain tools, scripts, and methodologies to enhance the efficiency and effectiveness of penetration testing activities. - Develop Python-based applications, tools, and scripts according to specifications. - Collaborate with the team to define project requirements and deliver high-quality solutions. - Write clean, efficient, and maintainable code following best practices. - Debug and troubleshoot issues to ensure the performance and reliability of applications. - Work with databases and data processing frameworks to store and manipulate data effectively. - Stay updated on Python libraries, frameworks, and best practices to continuously improve development processes. Qualifications - Proven experience in penetration testing, ethical hacking, and vulnerability assessment. - In-depth knowledge of common security frameworks, standards, and best practices (NIST, OWASP, etc.). - Strong understanding of network protocols, systems architecture, and web application security. - Thorough knowledge of common software vulnerabilities and standards such as OWASP Top 10, SANS Top 25, etc. - Proficiency in using penetration testing tools and frameworks (Metasploit, Burp Suite, Nmap, Wireshark, etc.). - Experience with scripting and programming languages (Python, Bash, PowerShell, JAVA, etc.). - Excellent written and verbal communication skills, including the ability to convey technical concepts to non-technical stakeholders. - Ability to work independently and collaboratively in a team environment. - Strong analytical and problem-solving skills. - Commitment to continuous learning and professional development. Requirements - Opportunity to join a promising Scale-up with accelerated career growth. - Opportunity to join and grow in a rapidly expanding Cybersecurity industry. - Competitive Compensation. - Relocation Benefits. - Healthcare Insurance Benefits. - Company Car Lease Benefits. Benefits - Opportunity to join and grow in a passionate, rapidly expanding industry. - Competitive compensation. - You will be working alongside international experts. - Strong career prospects in an early-stage startup.
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Role Description Nous recherchons notre Head of Security pour piloter la fonction sécurité d’Indy. Rattaché directement au CTO, tu auras pour mission d’industrialiser la stratégie sécurité, avec un scope large : - Sécurité applicative - Infrastructure - Protection des données - Sensibilisation des équipes Ce n’est pas un rôle de gouvernance. On cherche quelqu’un qui code. Tu interviendras directement dans la codebase pour renforcer les briques critiques : - Authentification - Gestion des secrets - Chiffrement Tu feras des revues de code sécurité sur les PR sensibles. Tes missions : - Réaliser un audit complet de la posture sécurité d’Indy et en déduire la stratégie sécurité court/moyen/long terme - Contribuer dans la codebase sur les sujets critiques : auth, sessions, chiffrement, gestion des secrets - Intégrer la sécurité dans le cycle de développement (shift-left) : threat modeling, SAST/DAST, security reviews - Mettre en place les outils de détection, monitoring et réponse aux incidents - Reprendre le lead de la guilde sécurité et gérer les incidents de sécurité - Former et sensibiliser les équipes tech et non-tech - Être le référent sécurité auprès du Comex, des clients et des partenaires Voici également notre stack complète : - NodeJS (Express & Fastify) - VueJS - MongoDB - Javascript / Typescript - Python - Heroku - AWS - Github CI Nous avons également développé une librairie de composants basée sur VueJS et storybook. Company Description
• Accompagner la démarche Prévention des risques du département • Mettre en œuvre la politique Handicap et Inaptitude du département et l'animer avec les acteurs clés
• Conduct investigations into anomalous events and behaviors that may pose risk to the company • Contribute to the design and development of detection and investigation capabilities • Analyze threat intelligence and develop use cases • Conduct data analysis and execute complex investigations • Drive detection engineering and write reports • Advise on preventative controls and collaborate with internal teams for coordinated efforts • Prepare investigative reports and briefings for leadership • Maintain chain-of-evidence and engage with External Law Enforcement as needed • Lead training or education and awareness initiatives for the enterprise
Product Security Engineer
LatticeLattice is a people success platform that empowers leaders to build engaged, high-performing teams & winning cultures.
• Partner with engineers to identify, triage, and remediate security issues in product features and services • Participate in security reviews and threat modeling for new features and systems • Perform security-focused code reviews and help identify common vulnerabilities • Contribute to secure-by-default patterns, libraries, and tooling in our TypeScript-based stack • Help implement and operate security tooling (SAST, DAST, dependency scanning, etc.) • Support vulnerability management workflows, including internal findings and bug bounty reports • Assist in investigating security issues and assessing risk and impact • Collaborate with platform and infrastructure teams to improve application and cloud security posture • Assist in identifying and mitigating risks in AI/LLM-powered features • Contribute to security guidance, documentation, and training for engineering teams
