Postman

Senior Security Engineer, Applications

Postman

full-time

Posted on:

Location Type: Hybrid

Location: Bengaluru • 🇮🇳 India

Visit company website
AI Apply
Apply

Job Level

Senior

Tech Stack

AWSCloudSDLC

About the role

  • Mentor junior Security Engineers and Security Champions on security best practices and techniques
  • Improve security tooling and processes to reduce manual review efforts and false negatives
  • Conduct security talks and training sessions
  • Identify critical flaws and weaknesses in web applications, services and cloud infrastructure and design/implement remediation
  • Write and review technical proposals, architectural diagrams, application code and IaC
  • Use automated and manual testing techniques to understand environments and reduce false negatives
  • Improve scope of assessments by adding new techniques and vulnerability categories
  • Consolidate and track vulnerabilities across the organisation and supply chain to prioritise security uplift efforts
  • Review and define requirements for developing and deploying secure products; create guidelines and standards
  • Build systems that protect against and eradicate entire classes of vulnerabilities

Requirements

  • Experience working as a Senior Security Engineer with deep involvement in securing modern web applications and APIs
  • Experience conducting threat modelling, security reviews and risk assessments
  • Solid project management experience leading initiatives that have measurably improved the security of organisations
  • Proficient in one or more high-level programming languages
  • Proficient with common developer tools and processes such as Github, CI/CD, containers and orchestration, IaaS/PaaS, APIs, Websockets, Databases, Front-End and Back-End systems
  • Experience securing Data to meet various privacy framework and regulation requirements
  • Deep understanding and experience in securing AWS environments
  • Experience in deploying AppSec tools (e.g., SAST, SCA, WAF) throughout the stages of the SDLC
  • Understanding of web security mechanisms such as SOP, CORS, CSP, Subresource Integrity, and same-site cookies
  • Strong understanding of authentication/authorization protocols e.g. OAuth, SAML and JWT
Benefits
  • Postman pay-on-performance philosophy
  • Flexible schedule working with a fun, collaborative team
  • Full medical coverage
  • Flexible PTO
  • Wellness reimbursement
  • Monthly lunch stipend
  • Wellness programs to support physical and mental health
  • Frequent team-building events
  • Donation-matching program
  • Inclusive culture

ATS Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
security best practicesthreat modellingsecurity reviewsrisk assessmentshigh-level programming languagesAppSec toolsAWS securityweb security mechanismsauthentication protocolsauthorization protocols
Soft skills
mentoringproject managementcommunicationleadershiptraining
Progressive Leasing

Senior Application Security Engineer

Progressive Leasing
Seniorfull-timeArizona, Utah · 🇺🇸 United States
Posted: 8 days agoSource: progleasing.wd5.myworkdayjobs.com
AWSAzureSDLC
Agiloft

Senior Software Engineer - Frontend

Agiloft
Seniorfull-time🇨🇦 Canada
Posted: 7 days agoSource: jobs.lever.co
AWSAzureJavaJavaScriptSDLCTypeScriptVue.js
LeanData

Staff QA Automation Engineer

LeanData
Leadfull-time$130k–$150k / yearCalifornia · 🇺🇸 United States
Posted: 8 days agoSource: jobs.ashbyhq.com
AWSCloudJavaJavaScriptSDLCSQLTypeScript
Versana

Security Engineer

Versana
Juniorfull-time$100k–$120k / yearNew York · 🇺🇸 United States
Posted: 13 days agoSource: jobs.lever.co
AWSAzureCloudFirewallsGoJavaJavaScriptPythonSDLCTerraformTypeScript
Climb Channel Solutions NA

Software Engineer, Common Criteria

Climb Channel Solutions NA
Mid · Seniorfull-timeUtah · 🇺🇸 United States
Posted: 7 days agoSource: jobs.ashbyhq.com
AWSAzureCloud.NETSDLCSOAPSQLWebpack