Job Description

MoEngage is an intelligent customer engagement platform, built for customer-obsessed marketers and product owners. We enable hyper-personalization at scale across multiple channels like mobile push, email, in-app, web push, on-site messages, and SMS. With AI-powered automation and optimization, brands can analyze audience behavior and engage consumers with personalized communication at every touchpoint across their lifecycle.

Fortune 500 brands and Enterprises across 35 countries such as Deutsche Telekom, Samsung, Ally Financial, Vodafone, and McAfee along with internet-first brands such as Flipkart, Ola, OYO and Bigbasket use MoEngage to orchestrate their cross-channel campaigns and engage efficiently with their customers sending 3.2+ billion messages to 1.2 billion monthly active users!

Our vision is to build the world\'s most trusted customer engagement platform for the mobile-first world.

We promise to care about your customers as much as you do. And that justifies our top ratings for service and support in Gartner Magic Quadrant, Gartner Peer Insights, and G2 Summer Reports. We have also been recognized as one of the 25 Highest Rated Private Cloud Computing Companies To Work For in a list released by Battery Ventures, a global investment firm based on the employee feedback on Glassdoor where employees reported the highest levels of satisfaction at work during the first six months of the pandemic."

Does this sound like you?
\xe2\x97\x8f You enjoy solving challenging technical problems.
\xe2\x97\x8f You have an experience that shows breadth and depth of security knowledge. You
are strong in multiple domains of software security.
\xe2\x97\x8f You know how to work as a partner with product teams and give them the advantage
of your security experience.
\xe2\x97\x8f You recognize, adopt, use, and recommend best practices in security engineering.
\xe2\x97\x8f You work ceaselessly to improve your knowledge of the security threat landscape
and of technologies that enable new forms of attack and defence.
\xe2\x97\x8f You are an effective communicator who engages well with technical and non-
technical audiences alike.

As a Security Engineer, you will:
\xe2\x97\x8f Drive various application security initiatives to perform end-to-end security reviews to
ensure critical information is appropriately protected. Identify security vulnerabilities
and risks, and develop mitigation plans.
\xe2\x97\x8f Provide security architecture and design consultations to product teams, to help them
build applications that are secure from the start.
\xe2\x97\x8f Evaluate and recommend new and emerging security technologies for use inside and
outside the security organization.
\xe2\x97\x8f Produce creative and inventive solutions for large problems. Participate in projects
that develop new intellectual property.
\xe2\x97\x8f Be an advocate for customer trust.
\xe2\x97\x8f Perform regular VA/PT for web, API and SDK
\xe2\x97\x8f Identify process gaps in our application security pentesting and vulnerability
Management.

Skills that you would need:
\xe2\x97\x8f Ability to implement and drive information and data security initiatives for MoEngage
SaaS Application.
\xe2\x97\x8f Exposure to multiple security engineering disciplines such as application security,
secure software development, cryptography, network security, system security, and
security policy.
\xe2\x97\x8f Deep knowledge of common software vulnerabilities, such as OWASP Top 10 and
CWE/SANS Top 25
\xe2\x97\x8f The desire to solve security challenges at scale, and work on securing the next
generation of applications powering the most sophisticated customer engagement
platform ever built.
\xe2\x97\x8f Experience in providing practical solutions that enable product teams to meet
business goals while controlling security risk.
\xe2\x97\x8f Ability to solve problems at their root and step back to understand the broader
context.
\xe2\x97\x8f Deep understanding of the interplay between attack and defence. Familiarity with
current network security and application security tools and how to apply them.
\xe2\x97\x8f Ability to promote secure design principles and a security-focused outlook across a
large organization.
\xe2\x97\x8f Good understanding of information security policies, practices, and standards.

Requirements:
\xe2\x97\x8f Bachelor\'s degree in computer science, computer engineering.
\xe2\x97\x8f 3 to 6 years of experience in the application security domain.
\xe2\x97\x8f Detailed technical knowledge and conceptual understanding of Application Security
Concepts, tools and practices.
\xe2\x97\x8f Good to have experience in Secure Code Assessment, Dynamic Assessment,
Secure Code Assessment and risk identification.
\xe2\x97\x8f Good to have experience in security vulnerability assessments and remediation
techniques.
\xe2\x97\x8f Thorough understanding of OWASP Top 10, their attack & defense mechanisms
(XSS, SQLi, CSP, CORS, SSRF)
\xe2\x97\x8f Understanding of different AuthN/AuthZ frameworks ( oAuth, SAML)
\xe2\x97\x8f Should be familiar with common tools (checkmarks, Postman and Burpsuite)

Key Skills: Application Security Testing, Secure SDLC, Secure code review, Application
Security, Threat Modeling, OWASP Top10

| |

We handle more than a billion messages everyday. Rest assured, you will be surrounded by really smart and passionate people as we scale much more to build a world class technology team.

MoEngage