Senior Product Security Engineer

2 Months ago • 5-8 Years • Product Management

Job Summary

Job Description

Toast is seeking a Senior Application Security Engineer specializing in application security to enhance security and leverage AI for restaurant business growth. The engineer will design, implement, and maintain secure applications, collaborating with development teams to embed security best practices throughout the software development lifecycle (SDLC). This role requires a strong understanding of security principles, cloud architecture, and AI technologies to ensure robust, scalable, and secure systems. Responsibilities include conducting security assessments, code reviews, identifying and mitigating vulnerabilities in web, mobile applications, and APIs, implementing security protocols, developing security tools, and executing security testing strategies. The role also involves staying current with security threats, developing security training programs, and working with cross-functional teams.
Must have:
  • Experience in application security domain
  • Secure software development practices and tools (SCA, SAST, DAST)
  • Pentesting web applications, mobile apps, and APIs
  • Strong programming in Python, Java, Kotlin, C++
  • Deep understanding of security principles, cryptography
  • Familiarity with DevSecOps practices
  • Knowledge of containerization (Docker, Kubernetes)
  • Excellent problem-solving and analytical skills
  • Strong communication and collaboration abilities
Good to have:
  • Relevant security certifications (CISSP, CEH)
  • Knowledge of OWASP, SANS frameworks
  • Knowledge of compliance frameworks (PCI, ISO, GDPR)

Job Details

At Toast, we are committed to creating innovative solutions that enhance security and leverage the power of artificial intelligence to drive restaurant business growth and help them thrive. We are seeking a highly skilled and versatile engineer who specializes in application security to join our dynamic team.

Job Summary:

The Senior Application Security Engineer will be responsible for designing, implementing, and maintaining secure applications and collaborate closely with development teams to embed security best practices throughout the software development lifecycle (SDLC). This role requires a deep understanding of security principles, cloud architecture, and AI technologies to ensure our systems are robust, scalable, and secure.

Key Responsibilities:

Application Security:

  • Conduct security assessments and code reviews to identify and mitigate vulnerabilities in web, mobile applications and APIs.
  • Identify, analyze, and prioritize security risks and vulnerabilities.
  • Implement and manage security protocols and measures to protect applications from threats.
  • Develop and maintain security tools and frameworks to support secure software development.
  • Develop and execute security testing strategies to validate the effectiveness of security controls.
  • Promote and enforce security best practices throughout the SDLC.
  • Provide guidance on secure coding principles, secure design patterns, and cryptographic techniques.

General Security Practices:

  • Stay current with the latest security threats, vulnerabilities, and technology trends.
  • Develop and deliver security training and awareness programs for engineering teams.
  • Work closely with cross-functional teams to embed security best practices throughout the development lifecycle.

Required Skills and Qualifications:

Experience: 5-8 yrs
Work Mode: Hybrid
Location : Bangalore
Education: Bachelor’s or Master’s degree in Computer Science, Engineering, Information Security, or a related field.

Experience:

  • Experience in application security domain
  • Proven experience with secure software development practices and tools (e.g., SCA, SAST, DAST).
  • Proven experience with pentesting of web applications, mobile applications (Android and IOS) and APIs (REST and GraphQL)

Technical Skills:

  • Strong programming skills in languages such as Python, Java, Kotlin, C++, or similar.
  • Deep understanding of security principles, cryptography, and secure coding practices.
  • Familiarity with DevSecOps practices and CI/CD pipelines.
  • Knowledge of containerization technologies (e.g., Docker, Kubernetes) and their security implications.
  • Experience with AI security testing tools and techniques.

Soft Skills:

  • Excellent problem-solving and analytical skills.
  • Strong communication and collaboration abilities.
  • Ability to work independently and as part of a team in a fast-paced environment.

Preferred Qualifications:

  • Relevant security certifications such as CISSP, CEH, or similar.
  • Knowledge of frameworks such as OWASP, SANS.
  • Knowledge of compliance frameworks such as PCI, ISO, GDPR, or similar.

 

 

Diversity, Equity, and Inclusion is Baked into our Recipe for Success

At Toast, our employees are our secret ingredient—when they thrive, we thrive. The restaurant industry is one of the most diverse, and we embrace that diversity with authenticity, inclusivity, respect, and humility. By embedding these principles into our culture and design, we create equitable opportunities for all and raise the bar in delivering exceptional experiences.

We Thrive Together

We embrace a hybrid work model that fosters in-person collaboration while valuing individual needs. Our goal is to build a strong culture of connection as we work together to empower the restaurant community. To learn more about how we work globally and regionally, check out: https://careers.toasttab.com/locations-toast.

Apply today!

Toast is committed to creating an accessible and inclusive hiring process. As part of this commitment, we strive to provide reasonable accommodations for persons with disabilities to enable them to access the hiring process. If you need an accommodation to access the job application or interview process, please contact candidateaccommodations@toasttab.com.

------

For roles in the United States, It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Similar Jobs

GameDuell - Senior 2D Animator (Unity) - Character & Asset Specialist

GameDuell

Berlin, Berlin, Germany (Hybrid)
5 Months ago
gunfire games - Senior Product Marketing Manager

gunfire games

Irvine, California, United States (On-Site)
3 Months ago
Plaid  - Account Manager - Fintech Named Accounts

Plaid

San Francisco, California, United States (On-Site)
4 Months ago
pentair - Associate Specialist- Industrial Automation

pentair

Noida, Uttar Pradesh, India (On-Site)
3 Weeks ago
Mixpanel - Senior Sales Manager, Enterprise

Mixpanel

San Francisco, California, United States (Hybrid)
1 Month ago
Luxoft - Murex Front Office Consultant - Structured Products

Luxoft

Abu Dhabi, Abu Dhabi, United Arab Emirates (On-Site)
9 Months ago
Playground Games - Senior Producer

Playground Games

Royal Leamington Spa, England, United Kingdom (Hybrid)
1 Month ago
DevRev - Senior Product Marketing Manager

DevRev

London, England, United Kingdom (On-Site)
1 Month ago
Backbone - Product Manager

Backbone

Seattle, Washington, United States (Hybrid)
1 Year ago
Wolters Kluwer - Lead Product Software Engineer - Vital Law

Wolters Kluwer

Pune, Maharashtra, India (Hybrid)
3 Weeks ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Loft Orbital - RF Systems Engineer

Loft Orbital

Golden, Colorado, United States (On-Site)
3 Months ago
Microsoft - Principal Product Manager - Copilot

Microsoft

Mountain View, California, United States (Hybrid)
4 Months ago
Wolters Kluwer - Product Software Engineer(3+ years with .Net and React/Angular only)

Wolters Kluwer

Pune, Maharashtra, India (Hybrid)
3 Weeks ago
BioFire - Communications Brand and Performance Manager

BioFire

Durham, North Carolina, United States (On-Site)
4 Weeks ago
magnopus - Producer, Virtual Production

magnopus

Los Angeles, California, United States (Hybrid)
10 Months ago
Morning Star - Senior Data Scientist

Morning Star

Mumbai, Maharashtra, India (Hybrid)
1 Year ago
Rippling - Staff Software Engineer - Devices Software Management

Rippling

San Francisco, California, United States (On-Site)
5 Months ago
Miro - Technical Account Manager

Miro

Copenhagen, Denmark (On-Site)
3 Weeks ago
Synechron - Senior Java Full Stack Developer

Synechron

Bengaluru, Karnataka, India (On-Site)
1 Year ago
Gameopedia - Account Executive

Gameopedia

Lillestrøm, Akershus, Norway (On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Bengaluru, Karnataka, India

Zapak Digital Entertainment Limited - Game Programmer (Nintendo Switch)

Zapak Digital Entertainment Limited

Pune, Maharashtra, India (On-Site)
6 Months ago
Sumo logic - Senior Product Manager II - Integrations

Sumo logic

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Accenture - Data Engineer

Accenture

Chennai, Tamil Nadu, India (On-Site)
1 Month ago
Talrop - Creative Director

Talrop

Kochi, Kerala, India (Hybrid)
11 Months ago
Accenture - GN- Industry- MC- Energy Platform Consultant

Accenture

Bengaluru, Karnataka, India (On-Site)
2 Months ago
Ajmera Infotech - Senior QA Engineer – Lead Test Strategy for Life-Critical Software

Ajmera Infotech

Ahmedabad, Gujarat, India (On-Site)
1 Month ago
Paytm - Team Lead - Sales - Offline Merchants QR

Paytm

Kannur, Kerala, India (On-Site)
2 Months ago
Granicus - DevOps Engineer III

Granicus

Bengaluru, Karnataka, India (Hybrid)
1 Month ago
Philips - Category Sourcing Manager - Marketing APAC

Philips

Gurugram, Haryana, India (On-Site)
2 Months ago
Capgemini - Salesforce Testing

Capgemini

Mumbai, Maharashtra, India (On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

Product Management Jobs

Figma - Product Manager, Billing

Figma

San Francisco, California, United States (Remote)
3 Weeks ago
bytedance - Product Manager, Edge Computing Platform

bytedance

San Jose, California, United States (On-Site)
2 Months ago
AI Fund - Product Marketing Manager

AI Fund

United States (Remote)
1 Month ago
Rockstar Games - Assistant Post-Production Producer

Rockstar Games

New York, United States (On-Site)
2 Months ago
Power Integrations - Senior Product Engineer

Power Integrations

Penang, Malaysia (On-Site)
1 Year ago
WebMD - Product Marketing Manager

WebMD

Newark, New Jersey, United States (Hybrid)
3 Weeks ago
Tesla - Production Associate, Paint Plastics

Tesla

Brandenburg, Germany (On-Site)
5 Months ago
Eve  - Product Engineer

Eve

San Mateo, California, United States (Hybrid)
9 Months ago
Tennr - Product Engineer

Tennr

New York, New York, United States (On-Site)
2 Months ago
Marsh McLennan - AI Technology Product Manager

Marsh McLennan

Dublin, County Dublin, Ireland (Hybrid)
2 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Dublin, County Dublin, Ireland (Hybrid)

New York, United States (Hybrid)

Brisbane, Queensland, Australia (Hybrid)

Oxnard, California, United States (On-Site)

Dallas, Texas, United States (Remote)

Tarpon Springs, Florida, United States (On-Site)

Torrance, California, United States (Hybrid)

San Antonio, Texas, United States (Hybrid)

View All Jobs

Get notified when new jobs are added by Toast

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug