Principal Security Engineer, Atlassian

Atlassian

Location:
India, Bengaluru

Category:
IT - Software Development

Contract Type:
Not provided

Salary:

Not provided

Save Job

Apply Position

Job Description:

We’re looking for a principal Security Testing Engineer to work closely with the Security Testing Manager to build the Security Testing team and capability. You will be the Technical SME, drive process improvements, and equip the team with the latest tools techniques and methodologies to find meaningful vulnerabilities which off-the-shelf tools won’t. As the principal Security Testing Engineer you will be responsible for penetration testing and manual code review across Atlassian’s vast footprint. You will lead others to validate the state of Atlassian’s technical security, working closely with our security teams and leadership groups.

Job Responsibility:

Providing SME knowledge and guidance to a team of pen testers/code review
Continuing to mature pen testing/code review workflows
Identifying and recruiting top-class penetration testing talent
Supporting and guiding the growth of a India based penetration testing team
Analysing vulnerability data for trends and gaps in controls
Identifying significant vulnerabilities in Atlassian products prior to production deployment
Building contacts in the Atlassian engineering team, product team and security team
Building and leveraging existing contacts to identify potential talent to join the team
Establishing testing processes in the local team that complements and extends existing processes
Identifying insights which contribute to strategic investments
Maturing holistic security testing plays/processes

Requirements:

6+ years penetration testing experience in a consultancy, dedicated internal pentesting team, or similar offensive security function
2+ years experience as an offensive security team lead
Strong experience in white-box application security testing
Full stack application security technical experience
Delivery focused
Experience mentoring junior penetration testers
The ability to complete a penetration test and code review of a modern cloud application
Experience leading security teams on complex penetration testing engagements
Strong, practical understanding of security testing methodologies, supporting infrastructure requirements and legal considerations
Strong collaboration and communication skills when working with closely with deeply technical development and infrastructure teams
Worked in a principal penetration testing/application security role
Strong application security experience
Experience with program development and uplift
Affinity for growing teams and helping people succeed

Nice to have:

CVE’s to your name
Contributions to open source security or penetration testing tools
Delivered industry presentations
Public write ups or blogs of vulnerabilities you have identified
Certifications, notably: OSWE, OSCP, OSCE, or CREST CRT, or GPEN
Comfortable operating in AWS, Azure, and/or GCP

What we offer:

health and wellbeing resources
paid volunteer days

Additional Information:

Job Posted:
April 23, 2025

Employment Type:

Fulltime

Work Type:

Remote work

View All Jobs In This Company

Job Link Share:

Principal Security Engineer