Add office photos
All Filters
41 Flutter Jobs
Lead Security Engineer
Flutter
posted 4mon ago
Job Role Insights
Flexible timing
Key skills for the job
Job Description
- Identify novel ways to scale Threat modeling across multiple applications. A prior experience of 4+ years of threat modeling products and prior work on building Secure Architecture is desirable.
- Expertise in 2 or more of the following areas with prior experience of solving at scale
- API Security
- Web Application Security
- Mobile Application Security
- Prepare Secure by Design reference architectures for Developer adoption- Secure Architecture frameworks.
- Lead and own the SSDLC and envision frictionless experience for Developers in the lifecycle.Own the SAST, DAST and other Security tools in the lifecycle. Work on findings evaluation, prioritization and fix/mitigate at scale.
- Build the SCA(Software Composition Analysis) map for all the third party dependency usage at Scale and prioritize vulnerabilities based on EPSS,CISA KEV.
- Perform Secure Code reviews . Minimum experience of 2+ years is desirable.
- Own the Vulnerability Management with focus on vulnerability prioritization using EPSS,CISA KEV
- Implement Data Security standard and work with Engineering to work on Sensitive Data leakage.
- Implement a robust way to Identify all third party applications (COTS-Commercial-Off-the-Shelf) used across the ecosystem. Work on providing proactive Security Best practice evaluation and enforcement for all such applications.
- Lead and own the Security Champions program and build/curate developer/qa centric training modules.
- Work with Cloud Security team to improve Web App Firewalls (WAF) , prior experience with WAF rule fine tuning is a plus. Ensure early Identification of intrusion & attacks and implement countermeasures.
- Partner with SOC team for Security Incident Management and Remediation triage with Engineering across the ecosystem.
Requirements
- Overall 7+ years of relevant experience
- Bachelors degree in Computer Science or a related technical discipline, or equivalent practical experience.
- Understanding of security frameworks and standards like OWASP & NIST, Solid understanding of security protocols, cryptography, authentication, authorization. Prior Experience in solving any of OWASP Top 10 at scale is highly desirable.
- Good understanding of Linux and Windows OS, TCP/IP protocol stack and networking fundamentals, and security principles at all layers of the OSI stack
- Experience with API security, network security, cryptography, PKI, certificate management,
- Experience in CI/CD Tools Including Git, Jenkins, Ansible, or similar
- Knowledge and experience in web application security testing, vulnerability assessment, penetration testing, and generating reports using tools like Burp Suite, Paros, AppScan, Wireshark, Nmap, and Nessus.
- Advanced Expertise in at least one language, Shell scripting/Python/Go/NodeJS
Employment Type: Full Time, Permanent
Read full job description What people at Flutter are saying
What Flutter employees are saying about work life
based on 2 employees
Flexible timing
Monday to Friday
Within city
Flutter Benefits
View more benefits
Compare Flutter with
Swiggy
Compare
Zomato
Compare
Ola Cabs
Compare
MakeMyTrip
Compare
Paytm
Compare
BookMyShow
Compare
BigBasket
Compare
Blinkit
Compare
Urban Company
Compare
Nykaa
Compare
TCS
Compare
Accenture
Compare
Wipro
Compare
Cognizant
Compare
Capgemini
Compare
HDFC Bank
Compare
ICICI Bank
Compare
Infosys
Compare
HCLTech
Compare
Tech Mahindra
Compare
Similar Jobs for you
Share an Interview