Principal DevSecOps Engineer (DevSecOpsSASTSCA)

About Zscaler

Zscaler accelerates digital transformation to ensure our customers can be more agile efficient resilient and secure. As an AI-forward enterprise we are constantly pushing the envelope leveraging the worlds largest security data lake to power our cloud-native Zero Trust Exchange platform. This innovation protects our customers from cyberattacks and data loss by securely connecting users devices and applications in any location.

Here impact in your role matters more than title and trust is built on results. We say impact over activity. We seek innovators who actively use AI to amplify their impact and who thrive in an environment where we leverage intelligent systems to stay ahead of evolving threats. We believe in transparency and value constructive honest debatewere focused on getting to the best ideas faster. We build high-performing teams that can make an impact quickly and with high quality. To do this we are building a culture of execution centered on customer obsession collaboration ownership and accountability.

We value high-impact high-accountability with a sense of urgency where youre enabled to do your best work and embrace your potential. If youre driven by purpose thrive on solving complex challenges and want to be part of the team thats helping to secure the AI age we invite you to bring your talents to Zscaler and help shape the future of cybersecurity.

Role

We are looking for a Principal Software Development Engineer - (DevSecOps/Security) to join our Engineering team. This is a hybrid role based in Bangalore reporting to the Director Software Development Engineering.

Overseeing and leading a team of engineers you will develop high-quality software that is performant scalable reusable extensible secure supportable and reliable. You will contribute within our Engineering team to help build and enhance the worlds largest cloud security platform bringing your vision and passion to a team of experts enabling organizations worldwide to harness speed and agility through a cloud-first strategy.

What youll do (Role Expectations)

• Define and evangelize the long-term vision and roadmap for DevSecOps integrating security seamlessly into CI/CD pipelines infrastructure-as-code (IaC) and cloud operations
• Lead a small team of engineers providing mentorship and education on secure coding practices threat modeling and DevSecOps principles and driving them to achieve the long-term roadmap
• In depth experience in securing the code applications and infrastructure with a strong working experience in Security scanning SAST (e.g. Checkmarx SonarQube) DAST (e.g. Burp Suite Enterprise OWASP ZAP) SCA (e.g. BlackDuck Snyk Mend) WAF IDS/IPS SIEM/SOAR integration
• Ensure our systems and practices adhere to industry security standards and regulations (e.g. SOC 2 ISO 27001 GDPR PCI DSS)
• Experience with compliance checks and evidence collection for audit purposes and developing and enforcing security policies standards and guidelines across engineering

Who You Are (Success Profile)

• You are customer-obsessed. You build deep empathy for the customerboth internal and externaland anchor your decisions in solving their real-world problems. You champion their needs from start to finish knowing their success is our success
• You are a positive force. You approach hard problems with constructive energy and a can-do spirit that is contagious inspiring your team to stay focused on the solution
• You champion simplicity. You are skilled at distilling complex problems user needs and technical concepts into clear simple and actionable plans. You are a precise communicator who brings clarity and focus to every interaction
• You are resilient and adaptable. You view change as an opportunity and setbacks as temporary. You maintain composure and focus in high-pressure situations guiding yourself and your team through complexity with a steady positive hand
• You lead with integrity. You do the right thing even when its hard. You hold yourself and others to a high standard of accountability and build trust by matching your words with consistent transparent action

What Were Looking for (Minimum Qualifications)

• DevSecOps Leader with expertise in managing cross-functional development teams and enterprise transformations focused on roadmap alignment and program execution
• Minimum of 10 years of hands-on experience and a degree in computer science or a related field with experience managing AWS GCP or Private Cloud environments
• Strong experience with secrets management solutions such as HashiCorp Vault AWS Secrets Manager Azure Key Vault or Kubernetes Secrets
• Strong application development and automation experience with at least one OOPS language such as C C Java Python or GO
• Experienced in container orchestration (Docker Kubernetes EKS/GKE) and automation tools such as Terraform Ansible or CloudFormation

What Will Make You Stand Out (Preferred Qualifications)

• Experience with Git and GitOps based pipelines using GitLab GitHub and CI automation tools like Jenkins or GitHub Actions
• Experience writing and developing yaml-based CI/CD Pipelines and knowledge of build tools like makefiles gradle npm or maven
• Technical knowledge of Networking Load Balancers Firewalls and Web Security

#LI-SK3

#LI-HYBRID

At Zscaler we are committed to building a team that reflects the communities we serve and the customers we work with. We foster an inclusive environment that values all backgrounds and perspectives emphasizing collaboration and belonging. Join us in our mission to make doing business seamless and secure.

Our Benefits program is one of the most important ways we support our employees. Zscaler proudly offers comprehensive and inclusive benefits to meet the diverse needs of our employees and their families throughout their life stages including:

By applying for this role you adhere to applicable laws regulations and Zscaler policies including those related to security and privacy standards and guidelines.

Zscaler is committed to providing equal employment opportunities to all individuals. We strive to create a workplace where employees are treated with respect and have the chance to succeed. All qualified applicants will be considered for employment without regard to race color religion sex (including pregnancy or related medical conditions) age national origin sexual orientation gender identity or expression genetic information disability status protected veteran status or any other characteristic protected by federal state or local laws. See more information by clicking on the Know Your Rights: Workplace Discrimination is Illegal link.

Pay Transparency

Zscaler complies with all applicable federal state and local pay transparency rules.

Zscaler is committed to providing reasonable support (called accommodations or adjustments) in our recruiting processes for candidates who are differently abled have long term conditions mental health conditions or sincerely held religious beliefs or who are neurodivergent or require pregnancy-related support.