# Senior Security Engineer

> Weekday AI · Bengaluru, India · Full-time · Posted 2026-07-10

**Salary:** INR 2,500,000–5,000,000

**Workplace:** on_site

**Department:** Weekday's Client via platform

## Description

**This role is for one of the Weekday's clients**

**Salary range: Rs 2500000 - Rs 5000000 (ie INR 25-50 LPA)**

Min Experience: 6+ years

Location: Bangalore, Bengaluru, Karnataka

JobType: full-time

We are looking for a highly skilled **Senior Security Engineer** with **6–9 years of experience** in designing, implementing, and maintaining robust security solutions across modern software products and cloud environments. In this role, you will collaborate closely with engineering, DevOps, and product teams to integrate security throughout the software development lifecycle (SDLC), ensuring applications and infrastructure remain resilient against evolving cyber threats.

The ideal candidate has strong expertise in **Product Security**, **Application Security**, and **Cloud Security**, along with practical experience in identifying vulnerabilities, driving secure development practices, and implementing proactive security controls. You should be passionate about building secure-by-design systems while enabling engineering teams to deliver software efficiently and safely.

## Requirements

### Key Responsibilities

-   Design and implement security controls for applications, cloud infrastructure, and software products.
-   Drive security initiatives across the SDLC by integrating security testing into CI/CD pipelines.
-   Conduct security assessments of web applications, APIs, microservices, and cloud-native architectures.
-   Develop and enforce secure coding standards, security best practices, and compliance guidelines.
-   Partner with software engineers to identify, prioritize, and remediate security vulnerabilities.
-   Build and maintain security automation for continuous monitoring and vulnerability management.
-   Review application architectures and recommend improvements to strengthen overall security posture.
-   Collaborate with DevOps teams to secure cloud deployments, containerized workloads, and infrastructure-as-code environments.
-   Monitor emerging security threats and proactively recommend mitigation strategies.
-   Participate in incident response activities, root cause analysis, and post-incident remediation.
-   Mentor development teams on secure software development methodologies and security awareness.
-   Support security audits, compliance initiatives, and internal governance requirements.

### Required Skills

### Must-Have Skills

-   Strong experience in **Product Security**, including secure product lifecycle management and security architecture.
-   Deep expertise in **Application Security**, including secure coding practices, vulnerability assessment, and application hardening.
-   Hands-on experience securing **Cloud Security** environments across platforms such as AWS, Azure, or Google Cloud Platform.
-   Solid understanding of authentication, authorization, identity management, encryption, and key management.
-   Experience implementing DevSecOps practices and integrating security tools into CI/CD pipelines.
-   Strong knowledge of common security standards and frameworks such as OWASP Top 10, CWE, CVSS, NIST, and CIS Benchmarks.
-   Experience working with modern web technologies, REST APIs, containers, Kubernetes, and microservices.
-   Familiarity with security monitoring, vulnerability management, and risk assessment methodologies.
-   Excellent analytical, troubleshooting, and communication skills.

### Good-to-Have Skills

-   Experience performing **Source Code Review** to identify security weaknesses and coding vulnerabilities.
-   Strong understanding of **Threat Modeling** methodologies and secure architecture design.
-   Hands-on experience conducting **Penetration Testing** for applications, APIs, and cloud environments.
-   Familiarity with Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), and container security tools.
-   Exposure to compliance frameworks such as SOC 2, ISO 27001, PCI DSS, or GDPR.
-   Relevant security certifications such as CISSP, CSSLP, CEH, OSCP, CCSP, or equivalent are an added advantage.

### Qualifications

-   Bachelor's or Master's degree in Computer Science, Information Security, Cybersecurity, or a related technical discipline.
-   **6–9 years** of professional experience in application, product, or cloud security engineering.
-   Proven ability to secure modern cloud-native applications and collaborate effectively across cross-functional engineering teams.
-   Strong problem-solving mindset with the ability to balance security, scalability, and business objectives in fast-paced development environments.

## Apply

[Apply at Weekday AI](https://apply.workable.com/weekday-1/j/9E21841930/apply)

---
Powered by [Workable](https://www.workable.com)
