Happy People AI logo
  • Sign Up
  • RiseON Suite

Job Details

Software Security Engineer
Share Icon

Meesho

Location Icon
Bengaluru,India(OnSite)

Employment IconEmployment Type: Full Time

Sign up to Apply

Job Description

Job Title: Software Security Engineer

Company: Meesho

Years of Experience: 1–2 Years

Location: Bengaluru, India

Role Type: Full-Time (On-site/Hybrid/Remote)

Salary: As per industry standards (or specify range)

Eligibility

  • Bachelor’s or Master’s degree in Computer Science, Software Engineering, or equivalent technical field.
  • 1–2 years of hands-on experience in software development and application security.

Role Overview

As a Software Security Engineer, you will build, automate, and scale security capabilities that protect Meesho’s infrastructure and applications. This role goes beyond using tools—you will design and develop them, embed security into CI/CD and SDLC workflows, and ensure our engineering teams receive real-time, code-level feedback. You will collaborate with the platform, SRE, and product teams to champion a security-by-design culture across the organization.

Key Responsibilities

  • Security Automation & Tooling
  • Build internal tooling for SAST, DAST, SCA, secrets scanning, and automated workflows.
  • Develop APIs, dashboards, and services to expose real-time security insights.
  • Integrate tools into CI/CD pipelines (GitHub Actions, Jenkins, ArgoCD).
  • Application Security Testing
  • Perform automated testing across web, mobile, and API layers.
  • Build fuzzers, validation tools, and automation scripts to correlate findings and reduce noise.
  • Developer Enablement
  • Drive internal workshops, documentation, and secure coding practices.
  • Promote developer-first security and reduce manual security bottlenecks.

Skills & Qualifications

  • Strong coding proficiency in Python, Java, Go, or Node.js (React/TypeScript is a plus).
  • Experience with CI/CD pipelines, REST APIs, and tooling integration.
  • Solid understanding of security testing tools such as Burp Suite, ZAP, Nuclei, Semgrep, Trivy, etc.
  • Familiarity with cloud platforms (AWS/GCP), container security (Docker/Kubernetes), and DevSecOps practices.

Bonus Experience

  • Hands-on experience with security data pipelines, AI-driven vulnerability analysis, or LLM-assisted code review.
  • Contributions to open-source security tools or internal engineering frameworks.