Product Security Engineer - Testing
Job Description
- Certifications such as CISSP, CEH, OSCP, or cloud-specific security certifications (e.g., AWS Certified Security - Specialty).
- Experience with microservices, Kafka, or distributed SaaS applications.
- Knowledge of AI/ML security practices, aligning with Sprinklr’s AI-driven features.
- Familiarity with compliance frameworks like SOC 2 or GDPR.
- Performing Pen Testing on web and mobile applications.
- Proficiency in threat modeling, vulnerability management, and secure design principles.
- Strong understanding of web, API, and mobile app security, including OWASP Top 10 vulnerabilities.
- Experience with Sprinklr’s tech stack: Java, JavaScript/React, Kubernetes, and cloud platforms (AWS, Azure, GCP).
- Familiarity with DevSecOps practices and tools like Burp Suite, OWASP ZAP, or similar for security testing.
- Ability to communicate security risks effectively to technical and non-technical stakeholders.
- Strong problem-solving skills and a proactive approach to identifying risks.
- Comprehensive health plans
- Leading well-being programs
- Financial protection for you and your family
- Daily meditation breaks
- Virtual fitness
- Continuous learning opportunities with LinkedIn Learning
- Inclusive and diverse workplace culture
Job Description
- Conduct security assessments, including threat modeling, design reviews, and vulnerability scans for applications built on Java, React, Kubernetes, MongoDB, Elasticsearch, and Kafka.
- Perform penetration testing and vulnerability assessments on APIs, web applications, and mobile apps, addressing OWASP Top 10 and other common risks
- Ensure compliance with security standards such as OWASP, NIST, ISO 27001, SOC 2, PCI-DSS, and GDPR by implementing and validating controls.
- Assist in developing secure coding guidelines and provide security training to developers.
- Stay informed on emerging threats, including those related to AI/ML features in Sprinklr AI+, and recommend proactive mitigation strategies.
Required Skills (Must have)
- Performing Pen Testing on web and mobile applications.
- Proficiency in threat modeling, vulnerability management, and secure design principles.
- Strong understanding of web, API, and mobile app security, including OWASP Top 10 vulnerabilities.
- Experience with Sprinklr’s tech stack: Java, JavaScript/React, Kubernetes, and cloud platforms (AWS, Azure, GCP).
- Familiarity with DevSecOps practices and tools like Burp Suite, OWASP ZAP, or similar for security testing.
- Ability to communicate security risks effectively to technical and non-technical stakeholders.
- Strong problem-solving skills and a proactive approach to identifying risks.
Required Skills (Good to have)
- Certifications such as CISSP, CEH, OSCP, or cloud-specific security certifications (e.g., AWS Certified Security - Specialty).
- Experience with microservices, Kafka, or distributed SaaS applications.
- Knowledge of AI/ML security practices, aligning with Sprinklr’s AI-driven features.
- Familiarity with compliance frameworks like SOC 2 or GDPR.
Why You'll Love Sprinklr:
We're committed to creating a culture where you feel like you belong, are happier today than you were yesterday, and your contributions matter. At Sprinklr, we passionately, genuinely care. For full-time employees, we provide a range of comprehensive health plans, leading well-being programs, and financial protection for you and your family through a range of global and localized plans throughout the world.
For more information on Sprinklr Benefits around the world, head to https://sprinklrbenefits.com/ to browse our country-specific benefits guides.
We focus on our mission: We founded Sprinklr with one mission: to enable every organization on the planet to make their customers happier. Our vision is to be the world’s most loved enterprise software company, ever.
We believe in our product: Sprinklr was built from the ground up to enable a brand’s digital transformation. Its platform provides every customer-facing team with the ability to reach, engage, and listen to customers around the world. At Sprinklr, we have many of the world's largest brands as our clients, and our employees have the opportunity to work closely alongside them.
We invest in our people: At Sprinklr, we believe every human has the potential to be amazing. We empower each Sprinklrite in the journey toward achieving their personal and professional best. For wellbeing, this includes daily meditation breaks and virtual fitness. We have continuous learning opportunities available with LinkedIn Learning and more.
EEO - Our philosophy: Our goal is to ensure every employee feels like they belong and are operating in a judgment-free zone regardless of gender, race, ethnicity, age, and lifestyle preference, among others. We value and celebrate diversity and fervently believe every employee matters and should be respected and heard. We believe we are stronger when we belong because collectively, we’re more innovative, creative, and successful.
Sprinklr is proud to be an equal-opportunity workplace and is an affirmative-action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status. See also Sprinklr’s EEO Policy and EEO is the Law.
