Software Engineer - I - DevSecOps

PlumHQ

Early Applicant

29 days ago
Be among the first 50 applicants

Exp: 2-4 Years

Full time

Bengaluru / Bangalore, India(estd)

IT/Computers - Software

(estd)

Job Description

About Plum

Plum is an employee insurance and health benefits platform focused on making health insurance simple, accessible and inclusive for modern organizations.

Healthcare in India is seeing a phenomenal shift with inflation in healthcare costs 3x that of general inflation. A majority of Indians are unable to afford health insurance on their own and so as many as 600mn Indians will likely have to depend on employer-sponsored insurance.

Plum is on a mission to provide the highest quality insurance and healthcare to 10 million lives by FY2030, through companies that care. Plum is backed by Tiger Global and Peak XV Partners.

Roles and Responsibilities:

Perform security assessments and audits of our infrastructure, identifying and mitigating security gaps and weaknesses.
Proven expertise in using Terraform and other infrastructure as code tools, managing vulnerabilities, policies and implementing best practices.
Conduct in-depth security reviews of application code, working closely with developers to code securely from the outset and address issues early during coding and testing phases.
Experience with SAST, SCA, and DAST, with the ability to address real-world challenges in these areas.
Implement and manage security tools within the CI/CD pipeline, focusing on DevSecOps practices.
Monitor and analyse logs, events, and metrics to identify security incidents, potential breaches, and emerging threats.
Understand runtime security, image scanning, network security, access control, host OS hardening, and vulnerability management in the container lifecycle.
Develop and maintain incident response plans, procedures, and playbooks for effective handling of security incidents and breaches.
Design, implement, and maintain security measures for our cloud infrastructure, including VPCs, security groups, IAM roles, and access controls.
Maintaining security hardening configurations and guidance for the diverse set of service available across AWS, GPC and other public cloud providers.

Experience and Qualifications:

2+ years of Security Engineering experience preferably in AWS or GCP Cloud.
Bachelor's degree in Computer Science, Information Security, or a related field. Equivalent work experience may be considered.
Strong knowledge of security principles, best practices, and common vulnerabilities (e.g., OWASP Top 10)Familiar with SAST, DAST, Fuzzing, and other tools.
Experience with Wiz, Prisma Cloud, Jira, Confluence & Terraform / CloudFormation (Infrastructure as a code)Familiarity with CI/CD tools such as GitHub Actions, Jenkins or CircleCI.
Experience with security technologies, such as firewalls, IDS/IPS, SIEM, DLP, antivirus, and vulnerability scanners.
Good understanding of cloud security architecture, security assessments, audit standards for the Cloud, security threats in the cloud.
Solid understanding of network protocols, TCP/IP, and network security concepts

More Info

Industry:IT /Computers - Software

Function:healthcare

Job Type:Permanent Job

Skills Required

Security Assessments

IAM roles

Prisma Cloud

breaches

security hardening configurations

runtime security

emerging threats

Security Technologies

public cloud providers

vulnerabilities

best practices

image scanning

VPCs

Infrastructure

common vulnerabilities

IDS/IPS

host OS hardening

application code

incident response plans

container lifecycle

CI/CD tools

GitHub Actions

logs

Wiz

security incidents

network security concepts

security principles

access controls

playbooks

Vulnerability Management

Antivirus

Date Posted: 27/10/2024

Job ID: 98273425

Report Job

About Company

PlumHQJob Source: jobs.lever.co

Plum is a comprehensive employee benefits platform that provides group medical cover for start-ups, SMEs, and corporate organizations. We provide premium employee health insurance with no co-pay, no waiting periods, and no hidden terms and conditions.

Hi , want to stand out? Get your resume crafted by experts.

Similar Jobs

Software Development Engineer I

Ivy CompTechCompany Name Confidential

0-2 yrs

Hyderabad / Secunderabad, Telangana, India

1 months ago