Security Engineer

Job Title:

Product Security Engineer Location:

Remote in India – need immediate joiners

About the Role Insight Global is seeking a Product Security Engineer to join a leading global enterprise software company known for its cloud-based solutions that help businesses manage customer relationships, data and operations. In this role, you will guide our security initiatives across product design, development, and deployment. You’ll work closely with engineering teams to identify and mitigate security risks through threat modeling, penetration testing, and code reviews. You will also contribute to building automation and tooling that enhances our detection and prevention capabilities.

Key Responsibilities Lead and participate in security design reviews and threat modeling sessions across product teams. Conduct black-box penetration testing and source code reviews for flagship services, partner applications, and internal tools. Perform product and cloud security assessments to identify vulnerabilities and recommend remediation strategies. Develop and maintain security tools and automation to improve detection, prevention, and response capabilities. Collaborate with engineering and product teams to triage and review security bugs and incidents. Drive infrastructure security assessments and contribute to overall security posture improvements.

Minimum Qualifications Master’s degree

(or foreign equivalent) in Computer Science, Security Informatics, Engineering (any field), or a related quantitative discipline

and 2 years of experience

in the field; OR Bachelor’s degree

(or foreign equivalent) in Computer Science, Security Informatics, Engineering (any field), or a related quantitative discipline

and 5 years of experience

in the field.

Required Skills & Experience Expertise in

Threat Modeling ,

Penetration Testing , and

Code Reviews Experience conducting

Product Security Assessments

and

Cloud Security Assessments Proficiency with

DAST and SAST tools Hands-on experience with

Burp Suite Strong programming skills in

Java

and/or other languages Scripting experience with

JavaScript

and/or other scripting languages Familiarity with

Infrastructure Security Assessments Ability to perform

Security Bug Triages and Reviews Experience in

Security Tools Development

Preferred Qualifications Industry certifications such as OSCP, CISSP, or CEH Experience working in agile development environments Familiarity with CI/CD pipelines and DevSecOps practices