Senior Product Security Engineer

1 Month ago • 5-8 Years • Product Management

Job Summary

Job Description

Toast is seeking a Senior Application Security Engineer specializing in application security to enhance security and leverage AI for restaurant business growth. The engineer will design, implement, and maintain secure applications, collaborating with development teams to embed security best practices throughout the software development lifecycle (SDLC). This role requires a strong understanding of security principles, cloud architecture, and AI technologies to ensure robust, scalable, and secure systems. Responsibilities include conducting security assessments, code reviews, identifying and mitigating vulnerabilities in web, mobile applications, and APIs, implementing security protocols, developing security tools, and executing security testing strategies. The role also involves staying current with security threats, developing security training programs, and working with cross-functional teams.
Must have:
  • Experience in application security domain
  • Secure software development practices and tools (SCA, SAST, DAST)
  • Pentesting web applications, mobile apps, and APIs
  • Strong programming in Python, Java, Kotlin, C++
  • Deep understanding of security principles, cryptography
  • Familiarity with DevSecOps practices
  • Knowledge of containerization (Docker, Kubernetes)
  • Excellent problem-solving and analytical skills
  • Strong communication and collaboration abilities
Good to have:
  • Relevant security certifications (CISSP, CEH)
  • Knowledge of OWASP, SANS frameworks
  • Knowledge of compliance frameworks (PCI, ISO, GDPR)

Job Details

At Toast, we are committed to creating innovative solutions that enhance security and leverage the power of artificial intelligence to drive restaurant business growth and help them thrive. We are seeking a highly skilled and versatile engineer who specializes in application security to join our dynamic team.

Job Summary:

The Senior Application Security Engineer will be responsible for designing, implementing, and maintaining secure applications and collaborate closely with development teams to embed security best practices throughout the software development lifecycle (SDLC). This role requires a deep understanding of security principles, cloud architecture, and AI technologies to ensure our systems are robust, scalable, and secure.

Key Responsibilities:

Application Security:

  • Conduct security assessments and code reviews to identify and mitigate vulnerabilities in web, mobile applications and APIs.
  • Identify, analyze, and prioritize security risks and vulnerabilities.
  • Implement and manage security protocols and measures to protect applications from threats.
  • Develop and maintain security tools and frameworks to support secure software development.
  • Develop and execute security testing strategies to validate the effectiveness of security controls.
  • Promote and enforce security best practices throughout the SDLC.
  • Provide guidance on secure coding principles, secure design patterns, and cryptographic techniques.

General Security Practices:

  • Stay current with the latest security threats, vulnerabilities, and technology trends.
  • Develop and deliver security training and awareness programs for engineering teams.
  • Work closely with cross-functional teams to embed security best practices throughout the development lifecycle.

Required Skills and Qualifications:

Experience: 5-8 yrs
Work Mode: Hybrid
Location : Bangalore
Education: Bachelor’s or Master’s degree in Computer Science, Engineering, Information Security, or a related field.

Experience:

  • Experience in application security domain
  • Proven experience with secure software development practices and tools (e.g., SCA, SAST, DAST).
  • Proven experience with pentesting of web applications, mobile applications (Android and IOS) and APIs (REST and GraphQL)

Technical Skills:

  • Strong programming skills in languages such as Python, Java, Kotlin, C++, or similar.
  • Deep understanding of security principles, cryptography, and secure coding practices.
  • Familiarity with DevSecOps practices and CI/CD pipelines.
  • Knowledge of containerization technologies (e.g., Docker, Kubernetes) and their security implications.
  • Experience with AI security testing tools and techniques.

Soft Skills:

  • Excellent problem-solving and analytical skills.
  • Strong communication and collaboration abilities.
  • Ability to work independently and as part of a team in a fast-paced environment.

Preferred Qualifications:

  • Relevant security certifications such as CISSP, CEH, or similar.
  • Knowledge of frameworks such as OWASP, SANS.
  • Knowledge of compliance frameworks such as PCI, ISO, GDPR, or similar.

 

 

Diversity, Equity, and Inclusion is Baked into our Recipe for Success

At Toast, our employees are our secret ingredient—when they thrive, we thrive. The restaurant industry is one of the most diverse, and we embrace that diversity with authenticity, inclusivity, respect, and humility. By embedding these principles into our culture and design, we create equitable opportunities for all and raise the bar in delivering exceptional experiences.

We Thrive Together

We embrace a hybrid work model that fosters in-person collaboration while valuing individual needs. Our goal is to build a strong culture of connection as we work together to empower the restaurant community. To learn more about how we work globally and regionally, check out: https://careers.toasttab.com/locations-toast.

Apply today!

Toast is committed to creating an accessible and inclusive hiring process. As part of this commitment, we strive to provide reasonable accommodations for persons with disabilities to enable them to access the hiring process. If you need an accommodation to access the job application or interview process, please contact candidateaccommodations@toasttab.com.

------

For roles in the United States, It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Similar Jobs

T systems - ServiceNow TM Forum Expert

T systems

Pune, Maharashtra, India (On-Site)
2 Weeks ago
Nintendo - Counsel, Intellectual Property

Nintendo

Redmond, Washington, United States (Hybrid)
9 Months ago
N26 - Capital Planning and Risk Controlling Manager

N26

Berlin, Berlin, Germany (On-Site)
4 Days ago
Western Digital - Internship - Sputter Process Engineering

Western Digital

Bayan Lepas, Penang, Malaysia (On-Site)
2 Weeks ago
world relief - MEAL Advisor

world relief

(Remote)
1 Week ago
Progress - Senior Product Marketing Manager

Progress

Burlington, Massachusetts, United States (Hybrid)
3 Weeks ago
Rocket Science - Producer (Technical Account Manager)

Rocket Science

Albany, New York, United States (Hybrid)
3 Months ago
ISS Stoxx - Analyst, ISS MI Research Production Services

ISS Stoxx

Mumbai, Maharashtra, India (On-Site)
1 Month ago
Zuora - Senior Product Manager, Billing

Zuora

Redwood City, California, United States (On-Site)
2 Weeks ago
Scanline VFX - Producer, Visual Pioneering

Scanline VFX

Vancouver, British Columbia, Canada (Hybrid)
4 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

endava - Senior .NET Developer

endava

Guadalajara, Jalisco, Mexico (On-Site)
3 Days ago
luxsoft - Product Knowledge Lead

luxsoft

Bengaluru, Karnataka, India (Hybrid)
3 Weeks ago
world relief - MEAL Advisor

world relief

(Remote)
1 Week ago
zeta - Learning and Development Associate

zeta

Bengaluru, Karnataka, India (On-Site)
3 Weeks ago
Aristocrat - QA Team Leader (Mobile and Automation)

Aristocrat

Warsaw, Masovian Voivodeship, Poland (Hybrid)
1 Month ago
smarsh - Software Engineer III

smarsh

India (Hybrid)
5 Months ago
Glean - Software Engineer, Machine Learning

Glean

Palo Alto, California, United States (On-Site)
2 Months ago
DraftKings - Senior Data Science Engineer

DraftKings

London, England, United Kingdom (On-Site)
2 Months ago
Highspot - Sr. Data Analyst

Highspot

Hyderabad, Telangana, India (Hybrid)
5 Months ago
Apple - Systems Quality Robotics Automation Engineer

Apple

Cupertino, California, United States (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Bengaluru, Karnataka, India

Oliver Plus - Senior Integrated Project Manager

Oliver Plus

Mumbai, Maharashtra, India (On-Site)
4 Days ago
Hitachi - FO Technical Lead

Hitachi

Bengaluru, Karnataka, India (On-Site)
5 Months ago
Granicus - Systems Engineer II - Windows

Granicus

Bengaluru, Karnataka, India (Remote)
2 Months ago
Capgemini - SDWAN (Consultant/Lead/Architect)

Capgemini

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Capgemini - Python Automation Networking

Capgemini

Bengaluru, Karnataka, India (On-Site)
1 Month ago
smarsh - Full Stack Engineer (SE III)

smarsh

India (Hybrid)
3 Weeks ago
Accenture - Business Advisory Analyst

Accenture

Navi Mumbai, Maharashtra, India (On-Site)
5 Days ago
Interactive Brokers - Software Engineer

Interactive Brokers

Mumbai, Maharashtra, India (Hybrid)
2 Months ago
Capgemini - SAP Hybris Lead Developer

Capgemini

Gurugram, Haryana, India (On-Site)
1 Month ago
Gigamon - Principal HW Engineer

Gigamon

Chennai, Tamil Nadu, India (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Product Management Jobs

binance - Senior Product Manager - Binance Square

binance

Taipei City, Taiwan (Hybrid)
1 Month ago
cirrus logic - Graduate Product Validation and Characterization Engineer

cirrus logic

Edinburgh, Scotland, United Kingdom (On-Site)
2 Months ago
Apple - WW Product Marketing Pricing Manager

Apple

Cupertino, California, United States (On-Site)
1 Month ago
Mattel Inc - Product Development Engineer I

Mattel Inc

East Aurora, New York, United States (On-Site)
2 Months ago
Capgemini - Products & Systems Engineer

Capgemini

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Fliff - Junior Product Manager

Fliff

New York, New York, United States (On-Site)
1 Year ago
Riot Games - Content Producer II

Riot Games

Berlin, Berlin, Germany (On-Site)
3 Months ago
Global Business Travel - Product Manager Payment

Global Business Travel

United Kingdom (On-Site)
1 Month ago
Survay Monkey - Product Manager II - Web

Survay Monkey

Ottawa, Ontario, Canada (Remote)
1 Week ago
Apple - Sr. Product Manager, IS&T Ai & Data Platforms

Apple

Sunnyvale, California, United States (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Bengaluru, Karnataka, India (Hybrid)

Bengaluru, Karnataka, India (Hybrid)

Omaha, Nebraska, United States (Hybrid)

Bengaluru, Karnataka, India (Hybrid)

Dublin, County Dublin, Ireland (Hybrid)

Columbus, Ohio, United States (Remote)

Lake Oswego, Oregon, United States (On-Site)

Nashville, Tennessee, United States (Remote)

Binghamton, New York, United States (On-Site)

Toronto, Ontario, Canada (Remote)

View All Jobs

Get notified when new jobs are added by Toast

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug