Lead AppSec tooling operations (SAST, SCA, Semgrep), develop custom rules and internal secure-by-default tooling, partner with engineering to remediate findings, build secure libraries and pipelines, and write maintainable code primarily in Go and Python to reduce security risk across the stack.
Dive in and do the best work of your career at DigitalOcean. Journey alongside a strong community of top talent who are relentless in their drive to build the simplest scalable cloud. If you have a growth mindset, naturally like to think big and bold, and are energized by the fast-paced environment of a true industry disruptor, you’ll find your place here. We value winning together—while learning, having fun, and making a profound difference for the dreamers and builders in the world.
As a member of the Security Engineering team, you will report to the Manager of Security Engineering. You will drive coordination over our AppSec tooling, e.g. SAST, SCA, to ensure appropriate coverage across the business and drive strategic initiatives with engineering to close gaps.
You will collaborate with other security teams and the rest of DigitalOcean to drive secure software design, reduce security risk in the organization, and empower engineers to make informed security decisions. Security at DO means solving incredibly complex problems at a high-scale that have real impact for our customers, our products, and the larger internet community.
What you’ll do:- Help drive operations of our deployed AppSec tooling, including SAST, SCA, and secrets management. You will synthesize findings into actionable, impactful priorities and work with engineering teams to close those gaps.
- We like Semgrep, and believe it accelerates our ability to create guardrails around safe engineering practices. You will add to our growing corpus of custom, internal Semgrep rules.
- Help accelerate the wider security organization through your secure engineering capabilities. You may build an AI agent to support the Trust & Safety organization or an alert pipeline for the SOC.
- Design and build internal tooling to provide engineering teams with secure-by-default configurations and libraries.
- Write robust, resilient, and maintainable software, primarily in Go and Python. You may sometimes work on a frontend.
- Prioritize the user experience (our customers are internal dev teams) to ensure security’s libraries and services are the easiest, fastest way to get work done.
Required qualifications:
- 5+ years of experience in software engineering projects with a security focus. We primarily develop in Go, Python, and JavaScript. You are comfortable writing robust code with good test coverage and can point to specific examples of projects you’ve successfully delivered in the past.
- Experience building or reviewing threat models and ability to craft malicious user, attacker, and abuse/misuse cases.
- Working knowledge of hardware and software supply chain security.
- Understanding of and ability to clearly communicate security topics and vulnerability classes (e.g. OWASP Top Ten). You need to understand why the current project provides security benefits to our engineers.
- A record of partnering with internal engineering teams to tackle security problems across an entire stack with empathy and creativity. Engineering teams are our partners, not our adversaries.
Preferred qualifications:
- Familiarity with technologies such as gRPC, Docker, Prometheus, Kubernetes, HashiCorp Vault, and GitHub Actions.
- Experience with microservice architectures, asynchronous and event-driven processing, and synchronous gRPC/HTTP-based requests.
- Strong analytical, communication, and organizational skills.
*This job is located in Bengaluru, India
JR: 2026-7765
#LI-Hybrid
Why You’ll Like Working for DigitalOcean
- We innovate with purpose. You’ll be a part of a cutting-edge technology company with an upward trajectory, who are proud to simplify cloud and AI so builders can spend more time creating software that changes the world. As a member of the team, you will be a Shark who thinks big, bold, and scrappy, like an owner with a bias for action and a powerful sense of responsibility for customers, products, employees, and decisions.
- We prioritize career development. At DO, you’ll do the best work of your career. You will work with some of the smartest and most interesting people in the industry. We are a high-performance organization that will always challenge you to think big. Our organizational development team will provide you with resources to ensure you keep growing. We provide employees with reimbursement for relevant conferences, training, and education. All employees have access to LinkedIn Learning's 10,000+ courses to support their continued growth and development.
- We care about your well-being. Regardless of your location, we will provide you with a competitive array of benefits to support you from our Employee Assistance Program to Local Employee Meetups to flexible time off policy, to name a few. While the philosophy around our benefits is the same worldwide, specific benefits may vary based on local regulations and preferences.
- We reward our employees. The salary range for this position is based on market data, relevant years of experience, and skills. You may qualify for a bonus in addition to base salary; bonus amounts are determined based on company and individual performance. We also provide equity compensation to eligible employees, including equity grants upon hire and the option to participate in our Employee Stock Purchase Program.
- DigitalOcean is an equal-opportunity employer. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service.
Application Limit: You may apply to a maximum of 3 positions within any 180-day period. This policy promotes better role-candidate matching and encourages thoughtful applications where your qualifications align most strongly.
Similar Jobs at DigitalOcean
Artificial Intelligence • Cloud • Software • Infrastructure as a Service (IaaS)
Lead the roadmap and execution for DigitalOcean Managed PostgreSQL: define provisioning, reliability, performance, pricing, and go-to-market. Conduct market analysis, gather customer feedback, collaborate with engineering, capacity planning, and GTM teams, and use metrics to drive product decisions for OLTP and AI workloads.
Top Skills:
Cloud InfrastructureDigitaloceanManaged DatabasesModel Context Protocol (Mcp)PgvectorPostgres
Artificial Intelligence • Cloud • Software • Infrastructure as a Service (IaaS)
Own and drive the roadmap and execution for DigitalOcean Managed Databases (MySQL). Lead market analysis, prioritize customer needs, partner with engineering, infrastructure, GTM, and customer success to deliver scalable provisioning, reliability, performance, and pricing. Use data to measure success and guide product decisions for OLTP and AI/ML use cases.
Top Skills:
Digitalocean CloudModel Context Protocol (Mcp)MySQLRelational Databases
Artificial Intelligence • Cloud • Software • Infrastructure as a Service (IaaS)
Lead and scale DigitalOcean's Managed Database engineering organization to build, operate, and improve a customer-facing cloud database service. Own architecture, reliability, SLOs/SLIs, fleet operations, monitoring, incident response, backups, failover, scaling, and roadmap execution. Hire and develop engineering leaders, drive cross-functional partnerships, improve launch quality and velocity, and ensure operational excellence for relational database workloads.
Top Skills:
AlloydbAmazon AuroraAmazon RdsAzure DatabaseCrunchyEdbGoogle Cloud SqlKafkaMongoDBMySQLNeonOpensearchPerconaPlanetscalePostgresRedis
What you need to know about the Pune Tech Scene
Once a far-out concept, AI is now a tangible force reshaping industries and economies worldwide. While its adoption will automate some roles, AI has created more jobs than it has displaced, with an expected 97 million new roles to be created in the coming years. This is especially true in cities like Pune, which is emerging as a hub for companies eager to leverage this technology to develop solutions that simplify and improve lives in sectors such as education, healthcare, finance, e-commerce and more.
