About PhonePe Group:
PhonePe is India’s leading digital payments company with 50 crore (500 Million) registered users and 3.7 crore (37 Million) merchants covering over 99% of the postal codes across India. On the back of its leadership in digital payments, PhonePe has expanded into financial services (Insurance, Mutual Funds, Stock Broking, and Lending) as well as adjacent tech-enabled businesses such as Pincode for hyperlocal shopping and Indus App Store which is India's first localized App Store. The PhonePe Group is a portfolio of businesses aligned with the company's vision to offer every Indian an equal opportunity to accelerate their progress by unlocking the flow of money and access to services.
Culture
At PhonePe, we take extra care to make sure you give your best at work, Everyday! And creating the right environment for you is just one of the things we do. We empower people and trust them to do the right thing. Here, you own your work from start to finish, right from day one. Being enthusiastic about tech is a big part of being at PhonePe. If you like building technology that impacts millions, ideating with some of the best minds in the country and executing on your dreams with purpose and speed, join us!
PhonePe is the leading payments app in India and we are looking for people who are experts in Application Security. You will be responsible for security assessments and penetration testing of application and merchant integrations as well as security research and development of security tools, processes and testing methodologies.
Desired Qualifications and Skills set-
The candidate must have
- Be a security subject matter expert and respond to any internal security engineering questions/requests.
- Be an expert on 3 party integrations and payment integrations. Understand basics of network security.
- The ability to think and test applications holistically covering all the aspects including edgecases and possible issues with 3rd party integrations.
- Ability to understand tech deeply and work with respective tech teams to define functional security design and best practices framework for security.
- Correctly balance security risk and product advancement
- Perform penetration testing on our internal and external applications
- Excellent communication skills to proactively communicate with stakeholders to keep them up to speed on any issues.
- A sharp focus on automating repeatable tasks and reducing operational overheads
- Ability to manage multiple projects.
- Natural inclination to attention to details
- Knowledge of OWASP top 10/mobile, PRD Review, Threat Modelling, Read Teaming, Source Code review, Devsecops, Cloud Security, Fraud and Business logic related issues, Data Security.
- OSCP, bug bounty experience is a plus
PhonePe Full Time Employee Benefits (Not applicable for Intern or Contract Roles)
- Insurance Benefits - Medical Insurance, Critical Illness Insurance, Accidental Insurance, Life Insurance
- Wellness Program - Employee Assistance Program, Onsite Medical Center, Emergency Support System
- Parental Support - Maternity Benefit, Paternity Benefit Program, Adoption Assistance Program, Day-care Support Program
- Mobility Benefits - Relocation benefits, Transfer Support Policy, Travel Policy
- Retirement Benefits - Employee PF Contribution, Flexible PF Contribution, Gratuity, NPS, Leave Encashment
- Other Benefits - Higher Education Assistance, Car Lease, Salary Advance Policy
Working at PhonePe is a rewarding experience! Great people, a work environment that thrives on creativity, the opportunity to take on roles beyond a defined job description are just some of the reasons you should work with us. Read more about PhonePe on our blog.