Staff Infosec Engineer
Gap
IT
Hyderabad, Telangana, India
Posted on Apr 21, 2025
About the Role
We are seeking a highly skilled Security Generalist with a strong foundation in security principles and architecture. The ideal candidate will have hands-on experience in supporting Customer Identity platforms, extensive exposure and working knowledge of DevSecOps principles, cloud security, WAF, firewalls, and networking concepts while demonstrating expertise in scripting and automation. This role requires a blend of security operations, engineering, and architecture capabilities to enhance the security posture of our organizationWhat You'll Do
- As a key member of the Product Security organization, you will be designing and implementing cutting-edge security solutions at scale.
- Design and Engineer repeatable processes/solutions and implementation of new technologies and tools across the enterprise technology footprint.
- Help drive technical and operational maturity from a security standpoint across all of Gap channels.
- Bring an automation-first mindset to drive productivity across all operational tasks.
- Work with Architects and Engineers to maintain accurate and reliable documentation of our network policy and design.
Who You Are
- Excellent understanding of distributed application architecture and demonstrated experience in working with development teams to build secure solutions.
- Customer Identity & Access Management (CIAM): Manage and secure customer identity platforms using tools like Ping, Okta, or similar technologies to enforce authentication, authorization, and access control policies.
- Cloud Security: Secure cloud environments (AWS, Azure, GCP) by implementing security controls, managing identity and access, and ensuring compliance with regulatory requirements.
- DevSecOps & Automation: Integrate security into CI/CD pipelines, automate security testing, and develop scripts for security automation using Python, Bash, or other scripting languages.
- Experience in data security and information security, including encryption, certificate life cycle management, PKI implementation, access control, or cryptographic key management
- Experience establishing an enterprise encryption infrastructure with industry standard encryption products, including HashCorp Vault, Vormetric Data Security, Venafi, Fornetix, Tokenex, or Protegrity
- Extensive knowledge of OWASP, network security products, network/application firewalls, web application architecture and a good understanding of internet technologies like DNS, HTTP, and HTTPS
- Experience with leading security reviews, threat modeling and identifying areas of risk.
- Strong familiarity with common vulnerabilities and attack vectors across various industries – retail, ecom, fintech etc
- The ability to communicate complicated technical issues and the risks they pose to developers, network engineers, system administrators, and management.
- Strong familiarity with common vulnerabilities and attack vectors across various industries – retail, ecom, fintech etc.
- Ability to collaborate with multi-functional teams located in different time zones to drive fixes and alignment to established policies