Security Engineer

Compliance Engineer

Company Overview

Lenskart is India’s fastest-growing optical business. The company was co-founded in 2010 by Peyush Bansal, Amit Chaudhary & Sumeet Kapahi to provide Vision to India. 1/3rd of India’s population today needs vision correction and only 25% of those in need wear specs. Lenskart was founded in 2010 with a vision to solve this problem of eyewear and be the Numero Uno eyewear provider in India.

With technology integration into the eyewear vertical, and keeping a deep focus on consumer happiness, Lenskart has grown more than 200% Year on Year in the last 2 years to be among the top 3 Optical Retail businesses of India today.

Lenskart brings together the brightest minds to create breakthrough technology solutions, helping our customers get highly engaging experiences. We are continuously evolving how we work and how we look at the business challenges, so we can continue to deliver measurable, sustainable solutions to our businesses.

Experience Level: 3-5 years

Lenskart is a leading innovator in the optical industry dedicated to providing stylish and affordable eyewear solutions. It’s very well on its way to being the best brand not just in India but across the entire world.

Being an omnichannel retailer comes with its own set of challenges. We are looking to hire talented security folks who can come on board and help us identify vulnerabilities & loopholes in our systems across multiple geographies.

Responsibilities:

As a Security Engineer at Lenskart, you will be responsible for:

• Conducting penetration testing on web applications, mobile applications, and APIs to identify vulnerabilities and recommend security enhancements.

• Developing and implementing security measures to safeguard cloud-based services and infrastructure.

• Collaborating with cross-functional teams to ensure security best practices are integrated into the software development lifecycle.

• Monitoring and analyzing security logs, alerts, and incidents to proactively identify and mitigate security threats.

• Conducting security assessments and risk assessments to identify potential vulnerabilities and weaknesses.

• Staying up-to-date with emerging security threats, vulnerabilities, and industry trends.

• Participating in incident response and providing support during security incidents.

• Automation (Python & Bash)

• Infra security (Internal & External VAPT)

• DevSecOps (Basics)

• Prior experience in Bug bounty or VDPs

Technical Skills:

Web Application Penetration Testing: Strong experience in assessing web applications for security vulnerabilities using tools such as Burp Suite, OWASP ZAP, or similar.

Mobile Application Penetration Testing: Proficiency in evaluating the security of mobile applications on both Android and iOS platforms, including reverse engineering and code analysis.

Cloud Security: In-depth knowledge of cloud security best practices, including experience with AWS, Azure, or Google Cloud Platform, and the ability to configure security controls and monitor for cloud-based threats.

API Security: Expertise in assessing the security of APIs, including authentication, authorization, and data protection.

Security Tools: Familiarity with security tools and technologies, such as SIEM systems, IDS/IPS, WAFs, and vulnerability scanners.

Soft Skills:

Communication: Excellent verbal and written communication skills to convey complex security issues to non-technical stakeholders.

Problem-Solving: Strong analytical and problem-solving abilities to identify and mitigate security risks effectively.

Team Collaboration: Ability to work collaboratively with development and operations teams to integrate security practices into the SDLC.

Certifications: Industry certifications such as CISSP, CEH, CompTIA Security+, or equivalent are a plus.

Education:

A bachelor's degree in computer science, information security, or a related field is preferred.

If you are a highly motivated security professional with a passion for protecting digital assets and are eager to join a dynamic organization at the forefront of security innovation, we encourage you to apply for this exciting opportunity at Lenskart.

Job Title: Compliance Engineer

Location: Gurugram/Bengaluru

Job Type: Full-time

Experience Level: 2-5 years