DevSecOps Engineer

About MoEngage:

MoEngage is an insights-led customer engagement platform trusted by 1350 global consumer brands including McAfee Flipkart Dominos Nestle Deutsche Telekom and OYO. MoEngage combines data from multiple sources to help brands gain a 360-degree view of their customers.

MoEngage Analytics arms marketers and product owners with insights into customer behavior. Brands can leverage MoEngage Personalize to orchestrate journeys and build 1:1 conversations across the website mobile email social and messaging channels. MoEngage Inform the transactional messaging infrastructure helps unify promotional and transactional communication to a single platform for better insights and lower costs. MoEngages AI Suite helps marketers develop winning copies and creatives optimize campaigns and channels that boost engagement and help with faster execution.

For over a decade consumer brands in 60 countries have been using MoEngage to power digital experiences for over a billion monthly customers. With offices in 15 countries MoEngage is backed by Goldman Sachs Asset Management B Capital Steadview Capital Multiples Private Equity Eight Roads F-Prime Capital Matrix Partners Ventureast and Helion Ventures.

MoEngage was named a Contender in The Forrester Wave: Real-Time Interaction Management Q1 2024 report and Strong Performer in The Forrester Wave 2023 report. MoEngage was also featured as a Leader in the IDC MarketScape: Worldwide Omni-Channel Marketing Platforms for B2C Enterprises 2023.

About the Role:

We are seeking a proactive DevSecOps Engineer with a strong security mindset to join our engineering this role you will bridge the gap between development operations and security. You will be responsible for contributing to secure-by-design infrastructure automating security into our CI/CD pipelines and ensuring our cloud environments across AWS (and ideally GCP/Azure) remain resilient against evolving cyber threats.

Roles & Responsibilities:

• Secure Infrastructure Management: Facilitate SRE/Engineering teams to deploy and manage secure scalable infrastructure on AWS (mandatory) and GCP/Azure (plus).

• Security Automation: Build and optimize CI/CD pipelines (Jenkins/Harness) integrating security gates like SonarQube Snyk or Trivy.

• Cloud Hardening & CSPM: Implement and manage Cloud Security Posture Management (CSPM) tools to detect misconfigurations. Enforce the Principle of Least Privilege (PoLP) via IAM governance.

• Vulnerability & Patch Management: Conduct regular VAPT (Vulnerability Assessment and Penetration Testing) support manage OS-level hardening (Ubuntu/AmazonLinux2) and automate patch management.

• Incident Response & Monitoring: Implement security logging and alerting (SIEM) to detect anomalies. Use Python/Shell to script auto-remediation for security incidents. Lead the technical response to security incidents performing root cause analysis (RCA) and coordinating containment and eradication efforts.

• Identity & Encryption: Manage secret lifecycles and encryption keys using HashiCorp Vault AWS KMS or OpenSSL.

• Edge Security: Design secure CDN architectures with robust WAF rules and DDoS protection to ensure Origin Security.

• Threat Hunting: Proactively identify security gaps by analyzing logs and traffic patterns to find blind spots in the current infrastructure.

• Playbook Automation: Develop and maintain SOAR (Security Orchestration Automation and Response) playbooks to automate repetitive SOC tasks and reduce Mean Time to Respond (MTTR).
  
  

Requirements:

Experience : 4-6 Years

1. DevOps & Cloud (Core)

• Cloud: Deep knowledge of AWS components (VPC GuardDuty Inspector). Knowledge of Azure/GCP is a major plus. Exposure to any CSPM/CNAPP solution is a must experience with Wiz/SentinelOne etc. would be a plus.

• Infrastructure as Code: Hands-on experience with Terraform and configuration management via Ansible.

• Containers: Experience securing Kubernetes (EKS/GKE) clusters including Network Policies and Image Scanning.

• Networking: Strong understanding of DNS Firewalls and Network/Cyber attack mechanisms (e.g. SQL injection Man-in-the-Middle).
  
  

2. Security Knowledge

• Frameworks: Strong grasp of the CIA Triad (Confidentiality Integrity Availability).

• Compliance: Basic understanding of Information Security audits and compliance (CIS Benchmarks SOC2 etc.).

• Tools: Familiarity with logging and SIEM solutions (ELK Coralogic or Sumologic).
  
  

3. Scripting & Systems

• Scripting: Proficiency in Python and Shell Scripting is mandatory for automation.

• Linux: Expert-level administration and hardening (Ubuntu CentOS AmazonLinux2).
  
  

Good to Have:

• Team Player: Proven ability to collaborate across Inter-team functions (Dev Sec and Ops).

• Problem Solver: Excellent troubleshooting debugging and R&D skills.

• Certifications: AWS Certified Security - Specialty AWS Solutions Architect or security-focused certs (CEH CompTIA Security) are highly preferred.

• Availability: Willingness to participate in an On-Call rotation for technical assistance.
  
  

At MoEngage we respect and value differences. We believe that when people from diverse backgrounds and perspectives collaborate we create the most value for our clients our employees and society. We embrace diversity and uphold a strong set of values. We are committed to inclusivity and take pride in providing equal opportunities for success and growth.

Employment at MoEngage is based solely on professional competence skills and experience. We stand firmly against all forms of discrimination and support equal rights and opportunities regardless of gender ethnicity abilities age identity orientation or expression marital status (including pregnancy) religion and beliefs or any other status protected by law.

It is our policy to comply with all applicable national state and local laws related to non-discrimination and equal opportunity. MoEngage is truly a place where everyone can bring their passions authentic selves and talents to work collaborating to drive progress and solve meaningful challenges.

Why Join Us!

At MoEngage we are passionate about our team and technology - see below to know more about us.

Scale @MoEngage

We handle more than a billion messages every day. Rest assured you will be surrounded by really smart and passionate people as we scale much more to build a world-class technology team.