remoteonsite

Senior Product Security Engineer, Security Platform - DigitalOcean

Security Engineer

Lead application security for a cloud platform, partnering with engineering teams to design, test, and secure new features using Python, Node.js, and AWS, while implementing OWASP best practices and CI/CD security pipelines.

About the role

Key Responsibilities

Collaborate with product and engineering teams to define security requirements for new features and services.
Conduct threat modeling, code reviews, and security testing (static, dynamic, and dependency scanning) for Python and Node.js applications.
Integrate security controls into CI/CD pipelines on AWS, ensuring automated vulnerability detection and remediation.
Develop and maintain security tooling, scripts, and documentation to support secure development practices.
Respond to security incidents, perform root‑cause analysis, and implement preventive measures.

Requirements

5+ years of experience in application security or related roles.
Strong proficiency in Python and Node.js with hands‑on experience building secure cloud services.
Deep knowledge of AWS security services (IAM, KMS, GuardDuty, etc.) and secure architecture patterns.
Experience with OWASP Top 10, threat modeling, and secure coding practices.
Hands‑on experience with CI/CD security tools (GitHub Actions, Jenkins, Snyk, etc.) and automated vulnerability management.

Skills

pythonnodejsawsowaspcicd

CompanyDigitalOcean

DepartmentEngineering

LocationKarnataka, India

Experience5+ years

Tenurefull-time

LevelSenior

Posted June 23, 2026