Job Description

:Job Title: Senior Engineer, Product SecurityJob Location: Bengaluru, KarnatakaWork Arrangement: Hybrid (3 days per week in office)What You\'ll DoWe are seeking an experienced and skilled Sr Product Security Engineer to join our team and spearhead the Product Security Life Cycle. In this critical role, you will collaborate closely with Global product teams, develop threat models, coordinate penetration tests, and facilitate the resolution of security issues. Your expertise will be crucial in developing and maintaining our application security pipeline automation while ensuring compliance with industry standards and best practices.ResponsibilitiesEstablish and maintain strong relationships with product engineering teams, providing guidance on application security processes and objectives.Create comprehensive threat models and attack trees for our products, identifying potential vulnerabilities and areas for improvement.Manage the penetration testing process, working closely with third-party testers to generate detailed reports, recommend remediation strategies, and effectively communicate results to development teams and product owners.Ensure product risk levels align with business requirements and oversee the creation of risk memorandums with product owner sign-off.Collaborate with audit teams to guarantee compliance with relevant regulations and standards.Support GRC initiatives by conveying risk levels, enabling informed decisions on retesting schedules and priorities.Serve as a SME for product security, providing insights and recommendations to enhance overall security posture.Required Experience & QualificationsDegree in Technology, Computer Science/Engineering, Cybersecurity, a related field or equivalent experienceStrong background in Application Security techniques and best practicesStrong Problem Solving and Troubleshooting skills within automation scriptsPossess excellent interpersonal and communication skills required to partner with other leaders across the global business to identify opportunities and risksProficiency in threat modelling and risk assessment methodologiesSolid understanding of Software Development principlesExperience with programming languages such as Bash, Python, Node, and TypeScript. At Least one programming language is a MUSTKnowledge of penetration testing processes and report generationExpertise in leading security assessments within AWS environmentsFamiliarity with development tools (e.g., Git, Jenkins, Maven)Hands-on experience with security testing tools, including Snyk, Checkmarx, Nikto, and NmapProficiency in SAST, DAST, and SCA vulnerability triage and assessmentAgile project management experience (e.g., Jira)This job is posted with NTS Technology Services Pvt. Ltd.Job Category:News Corp is a global, diversified media and information services company focused on creating and distributing authoritative and engaging content to consumers throughout the world. The company comprises businesses across a range of media, including: news and information services, book publishing, digital real estate services, cable network programming in Australia, and pay-tv distribution in Australia.Headquartered in New York, the activities of News Corp are conducted primarily in the United States, Australia, and the United Kingdom.

News Corp