Lead Application Security Engineer

InMobi Advertisingis a global technology leader helping marketers win the moments that matter. Our advertising platform reaches over 2 billion people across 150 countries and turns real-time context into business outcomes delivering results grounded in privacy-first principles. Trusted by 30000 brands and leading publishers InMobi is where intelligence creativity and accountability converge. By combining lock screens apps TVs and the open web with AI and machine learning we deliver receptive attention precise personalization and measurable impact.

Through Glance AIwe are shaping AI Commerce reimagining the future of e-commerce with inspiration-led discovery and shopping. Designed to seamlessly integrate into everyday consumer technology Glance AI transforms every screen into a gateway for instant personal and joyful discovery. Spanning diverse categories such as fashion beauty travel accessories home décor pets and beyond Glance AI delivers deeply personalized shopping rich first-party data and unparalleled consumer access it harnesses InMobis global scale insights and targeting capabilities to create high impact performance driven shopping journeys for brands worldwide.

Recognized as a Great Place to Work and by MIT Technology Review Fast Companys Top 10 Innovators and more InMobi is a workplace where bold ideas create global impact. Backed by investors including SoftBank Kleiner Perkins and Sherpalo Ventures InMobi has offices across San Mateo New York London Singapore Tokyo Seoul Jakarta Bengaluru and beyond.

AtInMobi Advertising youll have the opportunity to shape how billions of users connect with content commerce and brands worldwide. To learn more visit

What does the team do

Opportunity is part of the evolving cyber security group which is laser focussed on setting up industry benchmarks in managing & guarding against digital risks in a Cloud Native - DevOps Only AI environment. It is a lean-mean-special action group where every cyber sentinel gets an opportunity to work across domain has an independence to challenge status quo & evolve cyber practices to next level of maturity. Our core competencies revolve around Product & Platform security Cloud Native Risk Management and Detection & Response.

What you will be doing

Application Security Testing & DevSecOps

• Perform application security testing across Web API Mobile (Android & iOS) TV and Cloud services including vulnerability assessments and penetration testing.
• Validate and triage security findings through exploit verification and riskbased severity assessment.
• Own and operate CI/CD security controls including SAST DAST SCA secrets scanning and IaC scanning.
• Build and maintain security gates (e.g. Chekmarx or equivalent) with a focus on automation accuracy and developer usability.
• Conduct manual security code reviews for APIs and services written in Java Python and .
• Review application designs for authentication authorization data protection and API security best practices.
• Automate security workflows using scripts and APIs to standardize testing and reduce manual effort.
• Partner with engineering teams to drive timely riskappropriate remediation and prevent repeat vulnerabilities.

AI / GenAI Security

• Apply AI Secure SDLC practices for LLM-based features including prompt design tool/function usage and safe integration patterns.
• Assess and mitigate OWASP LLM Top 10 risks.
• Review and maintain secure prompt templates including system prompt hardening and context scoping.
• Implement practical AI guardrails (output validation policy checks basic jailbreak and abuse detection).
• Perform AI red teaming and adversarial testing using tools such as Garak PyRIT and custom test cases.
• Review RAG implementations to ensure authorization-aware retrieval tenant isolation and reduced data leakage risk.
• Identify and reduce sensitive data exposure risks in embeddings and ingestion pipelines.
• Conduct AI-focused threat modeling using OWASP LLM Top 10 STRIDE and MITRE ATLAS as reference frameworks.

What Were Looking For (Required)

• Minimum 6 years of experience in Application Security Penetration Testing DevSecOps or Security Engineering.
• Proven hands-on ability with SAST/DAST/SCA CI/CD security gates and vulnerability triage/remediation workflows.
• 23 years experience building and managing security gating in Checkmarx (or equivalent).
• 23 years experience performing manual security code review (APIs/services; common languages: Java/Python/).
• Familiarity with OAuth2 OIDC JWT mTLS API gateways and service-to-service identity.
• Strong knowledge of OWASP Top 10 Mobile OWASP Top 10 LLM.
• Strong experience with common testing tools: Burp Suite OWASP ZAP SQLMap Kali (and similar).
• Scripting/automation skills using Python plus Bash/PowerShell familiarity.
• Working knowledge of Docker/Kubernetes cloud-native patterns and secrets management basics.
• Solid communication skillsability to write clear findings influence engineering decisions and partner effectively.

AI-Specific Technical Skills (Expected Competency)

• Hands-on familiarity with LLM integrations and Python AI ecosystems (e.g. LangChain / orchestration frameworks).
• Understanding of RAG pipelines and vector database concepts (e.g. Pinecone FAISS Milvus or equivalent).
• Ability to design/validate guardrails (policy allow/deny jailbreak detection output validation safe tool calling).
• Familiarity with AI security testing patterns (prompt injection testing data leakage testing agent/tool abuse testing).

Preferred / Nice-to-Have

• Bug bounty / responsible disclosure recognition (Hall of Fame awards).
• Experience deploying and scaling open-source security tools in production.
• Certifications: OSCP OSCE GWAPT GPEN CSSLP
• Any AI security-focused training (LLM security RAG security adversarial testing ATLAS/LLM Top 10 programs).

The InMobi Culture

At InMobi culture isnt a buzzword; its an ethos woven by every InMobian reflecting our diverse backgrounds and experiences.

We thrive on challenges and seize every opportunity for growth. Our core values thinking big being passionate showing accountability and taking ownership with freedom guide us in every decision we make.

We believe in nurturing and investing in your development through continuous learning and career progression with our InMobi Live Your Potential program.

InMobi is proud to be an Equal Employment Opportunity employer and is committed to providing reasonable accommodations to qualified individuals with disabilities throughout the hiring process and in the workplace.

Visit to better understand our benefits values and more!