Security Engineer
Job Summary
Job Description
Highspot is seeking a Security Engineer to join its global Security team in Hyderabad. The role involves participating in application security assessments, responding to security incidents, and enhancing detection and response capabilities. The engineer will collaborate with various teams, including product engineering and IT, to implement security best practices and contribute to penetration tests. Responsibilities include securing the product, identifying vulnerabilities, managing incidents, and improving security tooling and workflows. The engineer will also be part of on-call rotations to ensure 24/7 platform security and respond to incidents.
Must have:
- 4+ years of experience in security engineering or related fields
- Working knowledge of at least one programming language
- Familiarity with cloud-native architectures
- Experience with security tools like static analyzers
- Understanding of CI/CD environments
15 skills required
Job Details
About Highspot
Highspot is a software product development company and a recognized global leader in the sales enablement category, leveraging cutting-edge AI and GenAI technologies at the core of its robust Software-as-a-Service (SaaS) platform. Highspot is revolutionizing how millions of individuals work worldwide. Through its AI-powered platform, Highspot drives enterprise transformation to empower sales teams through intelligent content management, training, contextual guidance, customer engagement, meeting intelligence, and actionable analytics. The Highspot platform delivers advanced features tailored to business needs, in a modern design that sales and marketing executives appreciate and is the #1 rated sales enablement platform on G2 Crowd.
While headquartered in Seattle, Highspot has expanded its footprint across America, Canada, the UK, Germany, Australia, and now India, solidifying its presence in the Asia Pacific markets.
About the Role
We’re building a world-class global Security team as part of our Trust Program. We're looking for versatile, practical Security Engineers to join our rapidly growing global Security Team at Highspot Hyderabad. As our engineering presence scales globally, we’re expanding our security footprint in our India Engineering hub to strengthen our 24/7 security coverage and deepen our ability to meet the evolving needs of our customers and product teams worldwide. In this dynamic and cross-functional role, you’ll gain broad exposure by engaging in diverse projects spanning multiple security functional areas - application security, infrastructure scanning, security operations, and incident response. Your responsibilities might include securing our product, participation in penetration testing as part of a security operation, identifying and remediating vulnerabilities, managing real-world security incidents, and enhancing our detection and response capabilities through automation and curiosity. You will partner closely with local security, IT, product engineering, and infrastructure teams and US-based security colleagues leveraging US based expertise during an initial 3–6 month period of guided close partnership. You'll be building foundations for strong, scalable security ownership, with the goal of enabling you to operate with increasing self-reliance over time, while continuing to collaborate and contribute to an inclusive, supportive, and globally-distributed team environment.
Responsibilities
- Contribute to application security assessments, threat modeling, and secure code reviews across product features, internal tools, endpoints, and third-party integrations.
- Collaborate directly with product engineering to implement secure-by-default and privacy-by-design best practices within our software development lifecycle (SDLC).
- Actively participate in, investigate and respond to security incidents, including detection, triage, containment, and root cause analysis.
- Gain experience and mentorship from seasoned security professionals while contributing to a growing, collaborative, and high-impact global security team.
- Build and enhance security detection rules, automate response workflows, and optimize alert management across cloud environments, corporate infrastructure, and SaaS platforms.
- Contribute to internal penetration tests, security-centered engineering follow-ups, and respond effectively to vulnerabilities identified by internal teams and external sources.
- Continuously Improve tooling, visibility, and workflows for security across our environments (e.g. Github, DAST/SAST, infrastructure scanners, SIEM/SOAR, etc.)
- Clearly document finding, decisions, and processes clearly and contribute to security playbooks and knowledge bases.
- Respond to security requests via asksecurity@ and contribute to sprint-led initiatives, balancing strategic priorities with day-to-day execution and security operations.
- Support in on-call rotations to maintain continuous security coverage and promptly respond to incidents, ensuring the security and resilience of our 24x7 platform and global workforce.
Required Qualifications
- 4+ years of progressive experience in security engineering, application security, DevSecOps, detection and response, or related security discipline and proven ability to engage effectively across these domains.
- Working knowledge of at least one programming language (Python, Ruby, Go, Rust, Javascript) and comfortable reading and critically reviewing code in languages you may not have deep proficiency in.
- Familiarity with cloud-native architectures (e.g. AWS, containers, microservices) and an understanding of common cloud security risks and mitigations.
- Experience with deploying, operating, and interpreting results from security tools such as static analyzers, web vulnerability scanners, supply chain analysis scanners, and host-based intrusion detection systems.
- Understanding of CI/CD environments and ability to integrate security into DevOps workflows.
- Practical experience with incident response, SIEM/SOAR, or participation in penetration testing as part of a security operations function.
- Demonstrated proactive approach, eagerness towards continuous learning mindset, and genuine curiosity about emerging security trends, threats, and technologies.
#LI-NS1
Equal Opportunity Statement
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of age, ancestry, citizenship, color, ethnicity, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or invisible disability status, political affiliation, veteran status, race, religion, or sexual orientation.
Did you read the requirements as a checklist and not tick every box? Don't rule yourself out! If this role resonates with you, hit the ‘apply’ button.
Similar Jobs
.png%3F1676067498&w=256&q=50)
bytedance
San Jose, California, United States (On-Site)
• 3 Months ago
Get notifed when new similar jobs are uploaded
Similar Skill Jobs
Mendix
Erlangen, Bavaria, Germany (Hybrid)
• 2 Months ago
Alpha Sense
New York, New York, United States (Hybrid)
• 7 Months ago
DraftKings
Sofia, Sofia City Province, Bulgaria (On-Site)
• 3 Weeks ago
Get notifed when new similar jobs are uploaded
Jobs in Hyderabad, Telangana, India
DNEG
Mumbai, Maharashtra, India (Remote)
• 5 Months ago
Bengaluru, Karnataka, India (On-Site)
• 2 Months ago
Pune, Maharashtra, India (On-Site)
• 1 Month ago
![[x]cube LABS - Product Manager](/_next/image?url=https%3A%2F%2Foutscal-assets.s3.ap-south-1.amazonaws.com%2Fproduction%2Fcompany%2F10_17_2024__07_07_57.png&w=256&q=50)
Get notifed when new similar jobs are uploaded
Cyber Security Jobs
PwC
Amsterdam, North Holland, Netherlands (On-Site)
• 9 Months ago
Tide
Bulgaria (Hybrid)
• 1 Month ago
Get notifed when new similar jobs are uploaded
