Software Engineer- Application Security (ECS)

Apply now »

Date: Sep 20, 2023

Location: India Hybrid, IN

Company: Chargebee Technologies Private Limited

About Chargebee:

Chargebee is the leading Revenue Growth Management (RGM) platform for subscription businesses. Thousands of companies at every stage of development — from startups to enterprises — use Chargebee to unlock revenue growth, experiment with new offerings and monetization models, and maintain global compliance as they scale.

Chargebee counts businesses like Freshworks, Calendly, and Study.com amongst its global customer base and is proud to have been named a Leader in Subscription Management by G2 for five consecutive years, as well as a Great Place to Work in both the United States and India.

We are backed by some of the most respected investors in the world; Accel, Tiger Global, Insight Partners, Steadview Capital, and Sapphire Venture,  who believe in the magic of subscriptions and the world that they can create — from cars to coffee pods and everything in between. With headquarters in San Francisco and Amsterdam,our 1000+ team members work remotely throughout the world, including in India, Europe and the US.

Job Summary:

We are seeking an experienced and skilled Application Security Engineer to join our dynamic team. You will be operating at a cross section of cutting edge tech transformation using AWS & Azure stack. It entails architecture , engineering & automation interventions with Cloud Infrastructure & Product Engineering teams. As an Application Security Engineer, you will be responsible for ensuring the security of our application throughout the software development life cycle.

You will collaborate with cross-functional teams, including software developers, product engineering, business, infra & GRC organizations to identify potential security vulnerabilities, design and implement robust security controls, and conduct regular security assessments.

Roles and Responsibilities:

Application Security Assessments

  • Conduct security assessments of applications to identify potential threats and vulnerabilities. Implementation of DevSecOps & partner with CICD team to integrate security tool gates as part of development lifecycle. Build security automation with high developer empathy & self -serviceablity as first principles. Perform DAST & VAPT with automation first approach. Utilize manual and automated testing techniques, secure code review, and vulnerability scanning tools to identify vulnerabilities. Collaborate with the development team to remediate identified vulnerabilities and provide guidance on remediation and secure coding practices

 

Secure Code Review

  • Perform code review to identify security flaws such as XSS, authentication issues , injection vulnerabilities. Advise development teams on secure coding practices, secure design review principles and security controls. Assist in developing secure coding guidelines and standards.

 

 Vulnerability Management:

  •  Manage and prioritize vulnerability remediation efforts. Stay up to date with latest security vulnerabilities, threats, and industry best practices.

 

 Security Training and Awareness

  • Provide Security awareness training to developersEducate developers on secure coding techniques and common vulnerabilities.

 

Automation and Engineering 

  •  Automate DevSecOps security checkpoints. Automation related to reducing manual effort around vulnerability management.

 

Customer Engagement :

  • Participate in customer engagement calls on matters pertaining to security maturity & tools adoption.

Skills and Experience:

● 2+ years of experience in application security and risk analysis techniques, or related fields such as software engineering and architecture

● Domain experience in payment tech / fintech / banking is a plus.

● Bachelor’s degree in engineering or Post Graduate in computer science / cyber security

Benefits:

Want to know what it means to work for a company that genuinely cares about you? Check out just a few of the benefits we give our employees:

i) Unlimited PTO, Parental leave

ii) Accident, Life and medical insurance

iii) Employee assistance program for mental wellness

iv) Work from home allowance

v) Gratuity

 

We are Globally Local

With a diverse team across four continents, and customers in over 60 countries, you get to work closely with a global perspective right from your own neighborhood.

 

We value Curiosity

We believe the next great idea might just be around the corner. Perhaps it’s that random thought you had ten minutes ago. We believe in creating an ecosystem that fosters a desire to seek out hard questions, and then figure out answers to them.

 

Customer! Customer! Customer!

Everything we do is driven towards enabling our customers’ growth. This means no matter what you do, you will always be adding real value to a real business problem. It’s a lot of responsibility, but also a lot of fun.