Security Engineer: II/ III/ IV

About the Team The security team at Meesho is like the Avengers to Meesho's S.H.I.E.L.D. After all, when 5% of Indian households shop with us, it’s important to build resilient systems to manage millions of orders every day. We’ve done this – with zero downtime! 😎 Sounds impossible? Well, that’s the kind of Engineering muscle that has helped Meesho become the e-commerce giant it is today. We value speed over perfection, and see failures as opportunities to become better. We’ve taken steps to inculcate a strong ‘Founder’s Mindset’ across our engineering teams, making us grow and move fast.We place special emphasis on the continuous growth of each team member - and we do this with regular 1-1s and open communication. As Security Engineer, you will be part of self-starters who thrive on teamwork and constructive feedback. We know how to party as hard as we work! If we aren’t building unparalleled tech solutions, you can find us debating the plot points of our favourite books and games – or even gossipping over chai. So, if a day filled with building impactful solutions with a fun team sounds appealing to you, join us.About the Role As our Security Engineer: II/ III/ IV, you’ll ensure Meesho’s products and services are safe and secure in production environments. On a typical day, you’ll conduct various tests to pick out the best security practices and to challenge existing ones. As part of the Security Engineering team, you’ll lead and own the overall Information Security architecture and program.

What you will do

• Exploit security flaws and vulnerabilities with attack simulations on multiple application platforms like Web, iOS and Android
• Work with the various engineering groups and teams to provide solutions to technical risks
• Assess technologies in networks, applications, code reviews in the release management cycle
• Perform vulnerability assessments and penetration testing by utilising tools – commercial and open source
• Perform, review and analyse security vulnerability data to identify applicability and false-positives
• Conduct penetration testing in line with Open Web Application Security Project (OWASP)
• Write technical reports that include suggested resolutions for identified problem areas and perform operational risk assessments
• Conduct API, Dashboards Security Testing

What you will need

• Bachelor's/Master's in any field
• 3-5 years of Application, Network and Infra Security experience
• Proficiency in Security Pen Testing methodologies including automated scans and manual methods
• Knowledge of at least one automated testing suite such as Burp, Nexpose, ZAP
• Hands-on Experience with Network analysis tools
• Understanding of Web Servers and HTTP 
• In-depth understanding of OWASP top 10 vulnerabilities 
• Basic understanding of PHP, Javascript, Golang, Python, NodeJS 
• Knowledge of TCP/IP networking including IP classes, subnets, NAT 
• Understanding of SSL Handshake and Certificates, DNS, and DHC and Network troubleshooting
• Proficiency in coding languages such as HTML and CSS 
Plusses
• Experience with Linux Flavours, Cloud Infra Security issues in Cloud Technologies (AWS, GCP, Azure)
• Experience with Docker and containerisation technologies
• Knowledge and understanding of basic Information Security Principles
• Understanding of cryptography fundamentals

About MeeshoMeesho is India’s fastest-growing e-commerce company. We started in 2015 with the idea of helping mom & pop stores to sell online. Today, 5% of Indian households shop with us on any given day. We’ve helped over 15 million individual entrepreneurs start online businesses with zero investment. We’re democratizing internet commerce by offering a 0% commission model for sellers on our platform — a first for India. We aim to become the e-commerce destination for Bharat.We’re currently valued at $4.9 billion with marquee investors supporting our vision. Some of them include Sequoia Capital, Softbank, Fidelity, Proses Ventures, Facebook, and Elevation Capital. We were also featured in Y Combinator’s 2021 Top Companies List and were the only Indian startup to make it to Fast Company’s The World’s 50 Most Innovative Companies in 2020. We ranked 6th in Linkedin’s Top Startups List 2021. Our strongest asset is our people. We have gender-neutral and inclusive policies to promote our people-first culture. Please check out meesho. careers for our openings.Our Mission  Democratise internet commerce for everyoneOur VisionEnable 100M small businesses in India to succeed online