Senior Security Engineer

Responsibilities

• Design and implement security automation frameworks for threat detection, remediation, and compliance across cloud and application layers.
• Perform secure code reviews, threat modeling, and lead periodic VAPT for web, mobile apps, and Agentic AI platforms.
• Secure multi-cloud (GCP/AWS) environments by building IaC security baselines and managing IAM, secrets, and container security.
• Implement data protection mechanisms for AI training pipelines and mitigate risks like prompt injection and model leakage.
• Collaborate with DevOps and Product teams to integrate security controls (SAST, DAST, SCA) into CI/CD workflows.
• Monitor for compromised datasets and leaked credentials while contributing to ISO 27001, SOC2, and GDPR compliance.

Requirements

• 3-5 years of experience in application, cloud, or product security engineering.
• Proficiency in Python, Go, or Node.js for security automation.
• Deep understanding of web and mobile security, OWASP Top 10, and secure SDLC practices.
• Hands-on experience with Cloud security (IAM, CSPM, SIEM) and IaC tools like Terraform or CloudFormation.
• Experience with CI/CD tools such as GitHub Actions, Jenkins, or GitLab CI.
• Strong understanding of containerization technologies including Docker and Kubernetes (EKS/GKE).
• Knowledge of compliance frameworks such as ISO 27001, SOC2, or GDPR.

Preferred Qualifications

• Familiarity with AI model security and data privacy principles.
• Relevant security certifications such as OSCP, GCP/AWS Security Specialty, CEH, CISSP, or CKS.

About the Company

Apna has connected over 60 million jobseekers with more than 250,000 enterprises and small businesses across India. Founded in 2019, we have rapidly grown to become one of India's fastest unicorns, revolutionizing livelihood creation through our innovative digital platform.