Senior Security Engineer

About the Role

The Senior Security Engineer role is a highly technical position responsible for strengthening the organization’s cybersecurity posture through robust infrastructure, endpoint, and cyber security measures. The role requires strong expertise in Zero Trust implementation, cloud security (AWS, Azure, GCP), and technologies like IDS/IPS, SIEM, WAF, and DLP. The engineer will lead initiatives in vulnerability management, threat detection, incident response, and security automation, leveraging advanced tools. The engineer will work closely with cross-functional teams to integrate security by design, conduct risk assessments, and participate in red and blue team exercises. They’ll also support security awareness initiatives and contribute to internal audits, compliance efforts, and help in mentoring junior team members. Familiarity with AI risk assessments, emerging threat landscapes, and scripting for automation (Python, Bash, Ruby) is are integral aspect of the position.

This is a highly visible strategic role requiring a blend of technical expertise and deep knowledge of the security landscape. Excellent communication, proactive problem-solving, and the ability to align technical solutions with business goals are key to excelling in this security engineering role.

What You'll Do:

• Proven experience as a Security Engineer with a focus on deploying and managing security solutions in the field of Cyber Security, End-point Security, and Network Security.
• Experience with vulnerability management, security incident response, and security incident and event management (SIEM) systems.
• Monitor security alerts and events from various sources, including security information and event management (SIEM) systems, and do a thorough analysis of the security events.
• Utilize advanced threat intelligence to proactively identify and mitigate potential security risks.
• Develop and implement detection rules and signatures to enhance threat detection capabilities.
• Monitor threat landscape to identify new tactics, techniques and procedures employed by threat actors and update associated profiles.
• Manage intelligence requirements from internal stakeholders across operations, engineering, risk management and others, soliciting feedback to continually drive improvements.
• Develop, manage, optimize, and continuously improve processes to enhance the overall cyber threat intelligence function.
• Support Incident Response and Engineering teams during incidents and other threat monitoring activities providing intelligence context, remediation recommendations and expertise.
• Strong experience with Darktrace, CrowdStrike, Cloud proxy, DLP solutions, SOAR, and other cyber security products.
• Should have strong understanding and experience with implementation of Zero trust
• Strong hands-on experience on deploying and managing IDS/IPS, WAF.
• Identify and help mitigate security issues, misconfigurations, and vulnerabilities related to PubMatic’s container, and Kubernetes infrastructure.
• Proven experience in conducting security assessments, vendor risk management including third-party vendors in a corporate environment.
• Sound understanding of network protocols, firewalls, and networking concepts.
• Able to understand the network architecture and contribute to bolstering the network security.
• Participate in security incident response efforts, contributing to minimizing the impact of security incidents and facilitating recovery.
• Stay updated on emerging threats and trends, applying this knowledge to enhance our security posture proactively.
• Collaborate with cross-functional teams to ensure that security practices are seamlessly integrated into the infrastructure and security is implemented by design.
• Set up security tooling and secure defaults to ensure software security best practices are adhered.
• Perform architecture analysis, threat modeling and technical design reviews of sensitive features and infrastructure.
• Triage and recommend solutions for security bugs from tools, third party assessments and external reported bugs.
• Participate in Red-Teaming, Blue Teaming exercises.
• Work with Partners to execute VAPT exercises, run security scans and collaborate to mitigate security issues and vulnerabilities.
• Should have experience and in-depth technical knowledge of security engineering, system and network security, authentication and security protocols, cryptography, and application security.
• Good understanding of Cloud Concepts – AWS, AZURE, GCP.
• Provide mentorship and guidance to junior engineers to enhance their understanding of infrastructure and cyber security.
• Should be able to conduct security awareness sessions and participate in various security campaigns e.g., Phishing campaigns, Hackathon, security bulletins.
• Strong analytical and problem-solving skills with the ability to assess and mitigate complex security risks.
• Identify and help mitigate security issues, misconfigurations, and vulnerabilities related to PubMatic’s infrastructure.
• Create and contribute to PubMatic security policies, standards, procedures, guidelines.
• Drive and participate in different Audits (both Internal and External), RFI’s to support new business initiatives.
• Experience and enthusiasm for learning about new security products, features, and strategies.
• AI risk assessment and policy development.
• Understanding of AI threat modeling – identifying new risks introduced by AI and LLM components.
• Work with different vendors, partners to evaluate new security solutions, conduct POC to demonstrate POV.

We'd Love for You to Have

Must Have:

• 8+ years of experience in Cyber Security, Infrastructure security.
• Experience of working with Global teams.
• Excellent communication and interpersonal skills to collaborate effectively with teams and articulate security concepts to both technical and non-technical stakeholders.
• In-depth knowledge of anti-abuse solutions, cyber security, network security, and/or infrastructure security.
• Applied knowledge of securing public, private cloud and on-prem infrastructure.
• Ability to perform security reviews, audits, security operations.
• Hands-on experience on EDR, DLP, SIEM, zero trust solutions, endpoint security solutions, Privilege Access management (PAM), Firewalls.
• Ability to assess engineering designs and architecture diagrams for abuse risks.
• Ability to assess abuse risks within infrastructure.
• Experience designing and implementing anti-abuse solutions.
• Should have proficiency in using and applying AI tools for anomaly detection, insider threat detection and incident response.
• Proficient in scripting languages such as Python, Ruby, or Bash for automating security tasks.
• Experience in managing & securing GNU/Linux based systems.
• Experience communicating abuse risks and roadmaps to senior leadership.

Good to have:

• Familiarity with AI security frameworks like MITRE ATLAS, NIST AI RMF, OWASP Top 10 for LLMs, CIS Benchmarks, ISO27001
• Relevant certifications (e.g., CISA, Palo Alto, CrowdStrike, CCNA, OSCP, CEH, ISO27001, COMPTIA Security+, Cloud+ etc.) are a plus
• Experience contributing to the security community such as presenting at conferences or meetups

Qualifications:

• Should have a bachelor’s degree in engineering (CS / IT) or equivalent degree from well-known Institutes / Universities.

Additional Information:

Return to Office : PubMatic employees throughout the global have returned to our offices via a hybrid work schedule (3 days “in office” and 2 days “working remotely”) that is intended to maximize collaboration, innovation, and productivity among teams and across functions.

Benefits : Our benefits package includes the best of what leading organizations provide, such as paternity/maternity leave, healthcare insurance, broadband reimbursement. As well, when we’re back in the office, we all benefit from a kitchen loaded with healthy snacks and drinks and catered lunches and much more!

Diversity and Inclusion : PubMatic is proud to be an equal opportunity employer; we don’t just value diversity, we promote and celebrate it. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

About PubMatic

PubMatic is one of the world’s leading scaled digital advertising platforms, offering more transparent advertising solutions to publishers, media buyers, commerce companies and data owners, allowing them to harness the power and potential of the open internet to drive better business outcomes.

Founded in 2006 with the vision that data-driven decisioning would be the future of digital advertising, we enable content creators to run a more profitable advertising business, which in turn allows them to invest back into the multi-screen and multi-format content that consumers demand.