BENGALURU · FULLTIME
Senior Infosec Engineer

Phonepe
Bengaluru · onsite · Posted 11d ago
Sourced from
Undisclosed5–7 yrsfulltimeBengaluru
Your match
?
Sign in to see your match score, skill gaps & tailored resume.
Section · 01
About this role
About the Role We are looking for a Senior Information Security Engineer with deep Linux expertise and a strong background in vulnerability remediation, penetration testing, network security and system hardening. Responsibilities
- Proven expertise in Rust development is highly valued and will be considered independent of a formal information security background.
- Develop, implement, and maintain system hardening standards across diverse Linux distributions; perform ongoing validation to ensure sustained security efficacy
- Create, manage and maintain the security analytics platform on Elasticsearch and build kibana dashboards, and keep alerting accurate and actionable
- Contribute to, execute, and troubleshoot shell scripts and ansible playbooks; automate repetitive security tasks using Python, Bash or Rust
- Conceptualise and build bespoke security tooling and products to address Infosec requirements, moving beyond the limitations of commercial software offerings
- Conduct penetration tests across web applications, mobile apps, and infrastructure; document findings with clear reproduction steps and remediation guidance
- Identify, validate, and track vulnerabilities at scale; work with engineering teams to drive timely remediation
- Analyse network traffic, application logs, SSH logs, and auditd events to detect anomalies and support incident investigations
- Participate in on-call rotation for security incident triage and response on Linux-based infrastructure
- Work with application protocols and REST APIs to identify security weaknesses
- Manage Nginx configurations from a security standpoint; analyse and assist with WAF rule tuning on Akamai or Cloudflare
- Present security findings and risk posture clearly to technical teams, stakeholders, and leadership Skills & Qualifications
- 5+ years of deep hands-on experience in Linux security, including system administration, hardening, and extensive log analysis (auditd, syslog, SSH, application logs) in large environments.
- Strong working knowledge of ELK stack (Elasticsearch, Logstash, Kibana).
- Essential proficiency in shell scripting and automation using Python or Bash; expertise in rust or go is a big advantage.
- Proven hands-on experience with git and software development.
- Hands-on exposure to OWASP Top 10 across web, mobile, and systems, with proficiency in tools like Burp Suite and Nessus.
- Thorough understanding of network protocols, cyber risks, threats, application protocols, and REST APIs.
- Expertise in Nginx and a strong preference for understanding WAF operations (Akamai or Cloudflare).
- Strong communication skills for translating technical findings into reports for engineering and executive audiences.
- Familiarity with BFSI regulatory frameworks (RBI, SEBI, IRDAI, ISO 27001).
- Certifications such as OSCP, RHCE, CCNP, or CISSP.
Sourced from linkedin · view original
Let the agent run this one for you.
Tailored resume, auto-apply, and referral lookup — in under 2 minutes.
Section · 02
Skills
PythonAnsibleLinuxBashPenetration TestingREST APIOWASPSSHwafelastic searchBurp SuiteKibananetwork protocolsnginxnessusweb applicationsRustCloudflareMobile AppsSyslogakamaiauditd
Section · Company
About PhonePe

Phonepe
FinTech
20.0k+
employees
2015
11 years old
Bangalore,Karnataka
India
About
Leading Indian fintech platform, revolutionizing digital payments with over 600 million users. With rapid growth and innovation, it drives India's shift towards a cashless economy.
Industries
FinTechFinancial Services
Employee ratings
3,655 reviews
4.0/ 5
Culture
3.8
Career growth
3.5
Work-life
3.9
Employees rate it well for
Salary297Work Culture267Work Life Balance188Senior Management177Job Security112
Find them on