Information Security Engineer

11 Hours ago • 5 Years + • Cyber Security

About the job

Job Description

As an Information Security Engineer at G-P, you'll implement the company's application security program. You'll collaborate with various teams (Engineering, DevOps, Product) to integrate security into the product lifecycle. Daily tasks include security reviews, secure SDLC education, threat modeling, vulnerability remediation, and managing application security tools. You'll secure sensitive data, ensuring compliance. Responsibilities include evangelizing application security, implementing SAST/DAST/SCA tools, performing security activities (threat modeling, vulnerability analysis, code review), triaging application risks, collaborating on remediation, reporting AppSec metrics, and contributing to security training programs. You'll also develop scripts and tools for automation and build custom solutions.
Must have:
  • 5+ years AppSec experience
  • Strong Cloud Security (AWS)
  • SAST/DAST/SCA tool experience
  • Threat modeling & vulnerability analysis
  • Code review & security testing
  • Proficiency in Python/Go
  • Excellent communication skills
Good to have:
  • Web/mobile penetration testing
  • CI/CD experience
  • Knowledge of OWASP Top 10

About Us

Our leading SaaS-based Global Growth Platform™ enables clients to expand into over 180 countries quickly and efficiently, without the complexities of establishing local entities. At G-P, we’re dedicated to breaking down barriers to global business and creating opportunities for everyone, everywhere.

Our diverse, remote-first teams are essential to our success. We empower our Dream Team members with flexibility and resources, fostering an environment where innovation thrives and every contribution is valued and celebrated.

The work you do here will positively impact lives around the world. We stand by our promise: Opportunity Made Possible. In addition to competitive compensation and benefits, we invite you to join us in expanding your skills and helping to reshape the future of work.

At G-P, we assist organizations in building exceptional global teams in days, not months—streamlining the hiring, onboarding, and management process to unlock growth potential for all.

About this Position

As Information Security Engineer, you will help drive and implement the company’s application security program. This position works closely with Engineering, DevOps, Product, and other team leads across the organization to build security into the product lifecycle from design through deployment.

On any given day, you might be performing a security review, educating the business on secure SDLC, collaborating with development teams on threat modeling, working with engineers to remediate identified risks, or managing application security tools. Through your efforts, you will be securing a large spectrum of sensitive and highly regulated data, ensuring compliance toward regulations, internal policies, and customer requirements.

Key Responsibilities:

  • Evangelize application security fundamentals and act as a consultative partner to development teams.
  • Implement and leverage SAST/DAST/SCA security tools like Veracode and Snyk. Make recommendations on application security tools.
  • Guide and perform security activities including threat modeling and vulnerability analysis, code review, and security testing, ensuring teams are validating for OWASP Top 10 and CWE/SANS Top 25.
  • Triage application risks daily as identified by AppSec scanning tools to eliminate false positives and provide a well-vetted set of vulnerabilities to engineering.
  • Collaborate with engineering to drive the timely remediation of vetted risk and to implement creative solutions that increase operational effectiveness.
  • Generate, collect, and report on AppSec metrics on a regular basis.
  • Make recommendations on development processes and provide production application security support as needed.
  • Create and maintain technical documentation for the AppSec program.
  • Contribute to the development and delivery of security awareness and secure development training programs.
  • Develop scripts and tools to automate repetitive security tasks, such as log analysis, patch management, and incident detection.
  • Build custom solutions to integrate security tools with existing systems using languages like Python, JavaScript, or Go.

What We Are Looking For:

  • Education: Bachelors degree in Cyber Security, Management Information Systems, Computer Science, Information Science or equivalent work experience
  • Experience: 5+ years of related work experience in the Application Security field.
  • Strong understanding of Cloud Security in AWS, specifically IAM Roles Policies, Security Groups and Encryption methodologies
  • Strong communication and relationship building skills with a high degree of comfort speaking with developers, IT executives, and business partners.
  • Proficiency in coding/scripting languages (e.g., Python, Go etc.).
  • Strong experience performing security focused application design reviews, threat modelling, manual code reviews, container security, and ethical hacking.
  • Strong experience implementing and working with SAST/DAST/SCA security tools.
  • Deep knowledge of security vulnerabilities, being able to identify issues, assess risk, and provide remediation guidance.
  • Deep knowledge of authentication and authorization options and standards.
  • Strong experience using common security testing tools and techniques to perform security assessments with significant expertise in either web or mobile penetration testing.
  • Strong experience working with developers and knowledgeable about modern web, mobile, and API development practices.
  • Ability to read and write code in at least one programming language.
  • Knowledge of CI/CD practices and experience incorporating security requirements into a SDLC.

G-P. Global Made Possible.

G-P is a proud Equal Opportunity Employer, and we are committed to building and maintaining a diverse, equitable and inclusive culture that celebrates authenticity. We prohibit discrimination and harassment against employees or applicants on the basis of race, color, creed, religion, national origin, ancestry, citizenship status, age, sex or gender (including pregnancy, childbirth, and pregnancy-related conditions), gender identity or expression (including transgender status), sexual orientation, marital status, military service and veteran status, physical or mental disability, genetic information, or any other legally protected status.

G-P also is committed to providing reasonable accommodations to individuals with disabilities. If you need an accommodation due to a disability during the interview process, please contact us at careers@g-p.com.

View Full Job Description

Add your resume

80%

Upload your resume, increase your shortlisting chances by 80%

Similar Jobs

QSC - DevOps Engineer

QSC, India (On-Site)

Playrix - Senior Playable Ads Developer (Fishdom)

Playrix, Kazakhstan (Remote)

Logitech - Salesforce Developer - Marketing

Logitech, India (On-Site)

Anavation - Cloud Security Architect

Anavation, United States (On-Site)

ION - Platform Security Analyst

ION, Italy (On-Site)

Barracuda Networks  Inc  - Security Automation Engineer

Barracuda Networks Inc , India (Hybrid)

Intel Corporation - Principal System Security Architect

Intel Corporation, United States (Hybrid)

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

PwC - Consultor Salesforce

PwC, Spain (On-Site)

Eleven Labs - Technical Customer Support Specialist

Eleven Labs, Australia (Remote)

Big Time Studios - Sr. Full-Stack Engineer (South America)

Big Time Studios, (Remote)

InMobiInMobi - Senior Solutions Engineer

InMobiInMobi, United Kingdom (On-Site)

CodeVyasa - Senior React js Developer

CodeVyasa, India (On-Site)

Patreon - Senior Frontend Engineer, Creation

Patreon, United States (Hybrid)

Adobe - UI Architect

Adobe, India (On-Site)

Starkflow - Junior Web Developer/Fiori Developer

Starkflow, India (Remote)

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Palo Alto Networks - Solutions Consultant - Intel (Pre-Sales)

Palo Alto Networks, United States (On_site)

Scale AI - Security Compliance Analyst

Scale AI, United States (On-Site)

undefined - Senior Application Security Engineer

Bengaluru, Karnataka, India (On-Site)

Unity - Senior Infrastructure Security Manager

Unity, United States (On-Site)

HackerOne - Technical Engagement Manager

HackerOne, India (Remote)

Microsoft - PRINCIPAL SOFTWARE ENG MGR

Microsoft, India (On-Site)

Google - Partner Engineer, Security, Google Cloud

Google, United States (On-Site)

Get notifed when new similar jobs are uploaded