Freshworks makes it fast and easy for businesses to delight their customers and employees. We do this by taking a fresh approach to building and delivering software that is affordable, quick to implement, and designed for the end-user. More than 50,000 companies -- from startups to public companies -- around the world use Freshworks software-as-a-service to enable a better customer experience (CRM) and employee experience (ITSM, HRSM).
Headquartered in San Mateo, California, Freshworks has a dedicated team operating from 13 global locations to serve customers, including American Express, Sony, Vice Media, TaylorMade, Sotheby’s, Stitchfix, OfficeMax, Multichoice, Delivery Hero, ITV, and Klarna.
Freshworks transforms the way world-class organizations collaborate with customers and co-workers. The suite includes Freshdesk (omnichannel customer support), Freshsales (sales automation), Freshmarketer (marketing automation), Freshservice (IT service desk), Freshteam (HR management system).
Purpose of the Role
In today’s world any organization or individual are constantly under the threat of cyber attack and this is proven through a steady uprise in the security incidents and data breaches year on year. We at Freshworks are committed to prevent such incidents and provide a secure environment for our customers to run their business.
Freshworks is looking for a passionate and self-driven application security engineer with the ability to work independently and collaboratively to enable development teams build secure products. You will play a pivotal role in integrating and advancing security by working with Developers, Product Owners, Program Managers, and Security Engineers. As part of the security engineering team you will advocate secure coding, secure design principles, build frameworks to automate security testing and conduct security assessments to unearth critical vulnerabilities. We also expect you to deliver trainings to development and QA teams.
Examine the products in detail to discover vulnerabilities and collaborate with the other security engineers to practically demonstrate the exploitability and risk factors.
Be on the forefront of emerging vulnerabilities / threats which could affect Freshworks products through independent research and study. Engage with the developers in developing workarounds / mitigation plan and ensure they are implemented per policy.
Drive thematic security assessments to discover and exploit unique vulnerabilities having serious business impact.
Engage with the development teams to conduct secure design reviews / threat modelling exercise to enumerates threats and mitigation strategy.
Enable the developers with knowledge of threat modelling by conducting focused workshops.
Manage integration and automation of SAST in the DevOps pipeline.
Build secure coding principles and propagate across the development community.
Be the to-go person for developers in solving critical issues relating to secure product development.
Deliver training programs at various levels in the organizations.
Conduct workshops / security tech-talks to disseminate security knowledge and awareness.
Be a role model for the team and provide healthy platform for team to learn and grow.
Collaborate and engage with cyber security leadership team and provide inputs for decision support.
Play the role of solution architect in designing and implementing security engineering programs.