Senior Application Security Specialist

Bengaluru, Karnataka, India | Infosec | Full-time | COVID-19 remote

Apply

ShareChat is India’s leading social media platform that operates exclusively in Indic languages. We

empower our 200 million strong monthly active user community to share their opinions, record their lives
and make new friends - all within the comfort of their language of choice. Our short video platform Moj, is
today India's preferred short video destination with tens of millions of users from across the world. The
platform has been designed for artists and creators to create innovative short video content and display
their creativity to millions, globally. At ShareChat we are spearheading India's internet revolution. By
providing a meaningful social experience, we are determining how the next billion users will interact on the
internet.
You will be responsible:
● To drive and manage the entire product security which includes regular application security assessments
(SAST, DAST) and managing the vulnerabilities in the environment.
● Define and manage the tooling and services required for security testing services, e.g. penetration testing, mobile
application security testing, source code inspection.
● To assess API security and architecture for the security enhancements.
● Define and report to CISO the appropriate metrics to judge operational effectiveness as well as outstanding
risk of the organization due to vulnerabilities introduced by projects, e.g. software vulnerabilities and
insufficient development practices
● Ensure applications are effectively security tested, according to their criticality, throughout development and
its lifecycle and are mitigated on a timely fashion
● To present application security risk metrics to senior management and different engineering
stakeholders.
● Managing the security vendors which provide technical security services.
● To drive the Secure SDLC across the engineering services or different pods
● Define, setup and lead the bug bounty programme for the ShareChat and Moj application.
● Identify major internal application security related deficiencies and suggest pragmatic approaches on how to
remediate them. Collaborate closely with other folks like GRC Analyst and Cloud Security engineers and
product managers on Application Security related matters
● Comply to the ISMS policy laid down by the ShareChat Company.
Recommended Knowledge & Experience:
❖ Bachelor's Degree in Computer Science, Information Security or related technology field or equivalent
experience.
❖ Deep understanding of security, SDLC, CI-CD, SaaS/cloud security, agile methodologies, Microservices
architecture, OWASP Top 10, front-end and backend technologies and its security
❖ Experience managing the team of at least 2-4 people and driving application and network security for the
high growth applications & infrastructure
❖ 5-7 years of experience in application security assessments including SAST and DAST
❖ Experience for managing the application security risks in the cloud or highly effective to work in tandem
with cloud security engineers.
❖ Self-starter with good problem-solving skills with critical thinking and conflict management skills
❖ Effective written and verbal communications skills