Software Engineer – Product Security
Environmental Management Authority
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇮🇳 India
Visit company websiteJob Level
Mid-LevelSenior
Tech Stack
GoPython
About the role
- Design, build, and maintain internal security tools and platforms to improve Ema’s overall security posture.
- Implement and improve security controls directly into product and platform workflows.
- Influence engineering architecture and ensure secure-by-design implementations.
- Own and scale application security programs including SAST, SCA, dependency risk, and custom detection logic.
- Support penetration testing efforts by validating findings and engineering durable fixes.
- Perform threat modeling for new features and systems, translating risks into concrete engineering solutions.
- Develop automation to reduce manual security effort across vulnerability management, access reviews, and incident response.
- Conduct secure design and code reviews with a strong focus on exploitable logic flaws and systemic risks.
- Build tooling to surface security signals from production systems and dev workflows.
Requirements
- 4–7 years of experience building scalable software systems, with a strong emphasis on security engineering, with excellent programming skills (Python required; Go or similar strongly preferred).
- Proven experience building internal tools, and frameworks used by engineering teams.
- Proven ability to build security platforms from zero to production scale.
- Strong judgment translating abstract risk into concrete engineering controls.
- Track record of influencing architecture across product, infra, and reliability teams.
- Comfortable owning ambiguous, high-impact security problems end to end.
- Experience integrating security into CI/CD pipelines and developer workflows.
- Comfortable operating cross-functionally with Product, Engineering, and Infra teams.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
PythonGoSASTSCAvulnerability managementpenetration testingthreat modelingautomationsecure designcode reviews
Soft skills
strong judgmentinfluencing architectureproblem ownershipcross-functional collaboration