Meesho20mo ago

Security Engineer IV

BangaloreFull Time Employeemid

SecuritySecurity EngineerCybersecurity

0 views0 saves0 applied

Apply Now

Quick Summary

Overview

About the Team The security team at Meesho is like the Avengers to Meesho's S.H.I.E.L.D. After all, when 5% of Indian households shop with us,

Technical Tools

SecuritySecurity EngineerCybersecurity

About the Team

The security team at Meesho is like the Avengers to Meesho's S.H.I.E.L.D. After all, when 5% of Indian households shop with us, it’s important to build resilient systems to manage millions of orders every day. We’ve done this – with zero downtime! 😎 Sounds impossible? Well, that’s the kind of Engineering muscle that has helped Meesho become the e-commerce giant it is today. We value speed over perfection, and see failures as opportunities to become better. We’ve taken steps to inculcate a strong ‘Founder’s Mindset’ across our engineering teams, making us grow and move fast. We place special emphasis on the continuous growth of each team member - and we do this with regular 1-1s and open communication. As a Security Engineer, you will be part of self-starters who thrive on teamwork and constructive feedback. We know how to party as hard as we work! If we aren’t building unparalleled tech solutions, you can find us debating the plot points of our favorite books and games – or even gossiping over chai. So, if a day filled with building impactful solutions with a fun team sounds appealing to you, join us.

About the Role

As a Security Engineer 4, your role is integral in ensuring the security of our products throughout their development lifecycle. You will be involved from the very beginning, participating in threat modeling and design reviews to identify potential risks early. You'll also integrate and manage SAST tools within our CI/CD pipeline, ensuring continuous security testing as code evolves. Additionally, you'll lead and conduct vulnerability assessments and penetration testing (VAPT) to proactively uncover and address security vulnerabilities before they reach production.

Lead and manage all aspects of the Secure Software Development Lifecycle (SDLC).

Implement and manage security tools within the CI/CD pipeline (DevSecOps).

Conduct and oversee VAPT for web applications, APIs, iOS, and Android apps.

Perform threat modeling, design, and architecture reviews to identify potential risks.

Execute manual source code reviews and enhance security in production environments.

Manage and optimize a self-managed bug bounty program.

Provide security architectural guidance to Engineering and IT teams.

Manage issues identified from penetration tests and bug bounty programs.

Lead security training and awareness campaigns across the organization.

Manage Web Application Firewalls (WAF) to ensure robust protection.

Engage in the Security Champions program to integrate security practices within teams.

Assist in creating and maintaining Security Risk Models for both new and existing systems.

7+ years of experience in product security, with a focus on application security and Dev SecOps.

Proven experience in leading architectural changes or cross-team efforts to mitigate security vulnerabilities.

Proficiency in programming languages such as Java, React, Node.js, and Python.

Hands-on experience with manual source code reviews and securing production code.

Expertise in deploying and managing security tools in CI/CD pipelines.

Experience with Git, Jenkins, Artifactory, or other similar technologies.

Strong background in securing the software development lifecycle, including eliminating classes of vulnerabilities.

Proficiency with cloud platforms like AWS or GCP, including their security tools.

Experience with Docker and containerization technologies is highly desirable.

Additional experience in infrastructure security, particularly in GCP, Docker, and containerization, is a bonus.

Relevant certifications such as GIAC Web Application Penetration Tester (GWAPT), OffSec’s Advanced Web Attacks and Exploitation (WEB-300), etc.

Strong understanding of SSO protocols, including OAuth and SAML.

Experience speaking at meetups or conferences.

Experience participating in bug bounty programs.

Listing Details

Posted: August 20, 2024
First seen: March 26, 2026
Last seen: April 23, 2026

Posting Health

Days active: 27
Repost count: 0
Trust Level: 31%
Scored at: April 23, 2026

Signal breakdown

freshnesssource trustcontent trustemployer trust

Apply for this position

Meesho

lever

Employees

3k+

Founded

2015

Domain

Jobs

External application · ~5 min on Meesho's site

Please let Meesho know you found this job on Jobera.

4 other jobs at Meesho

View all →

Explore open roles at Meesho.

Assistant Manager - Corporate Communication

Manager- Finance (Reporting & GL)

Full Time Employee

Cluster Head -Last Mile - Bangalore

Full Time Employee

Executive Assistant - Intern

Intern

Similar Security Engineer jobs

View all →

Springhealth66

Staff AI Security Engineer

$239k–$270k/yr

Youcom

Senior Security Engineer

USD 180000-235000

Xai

Security Engineer - Detection & Response

$180k–$440k/yr

Xai

Security Engineer - Azure Government

Xai

Security Engineer - Platform Security

$180k–$440k/yr

Talkdesk2

Security Engineer (Pentesting, Incident Response & Investigations)

Newsletter

Stay ahead of the market

Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.

Join 12,000+ marketers

No spam. Unsubscribe at any time.

Security Engineer IV

Apply Now

Security Engineer IV

Quick Summary

Listing Details

Posting Health

4 other jobs at Meesho

Similar Security Engineer jobs

Browse Similar Jobs

Stay ahead of the market