LogicMonitor Logo

LogicMonitor

Staff Application Security Engineer

Sorry, this job was removed at 04:31 p.m. (IST) on Friday, Oct 04, 2024
Be an Early Applicant
Pune, Maharashtra
Internship
Pune, Maharashtra
Internship

About Us:  

LogicMonitor is the leading fully automated, cloud-based infrastructure monitoring and observability platform for enterprise IT and managed service providers.

We love going to work and think you should too. We are customer obsessed, work as one agile team, and strive to be better every day while building trust. These are our core values. We foster a culture of performance and recognition, allowing us to transform growth as we enable our employees to do the best work of their careers. 

This position is located in Pune. You'll be working in a major tech center of Pune, India.  We call our offices Centers of Energy, because they’re where we accelerate work, spark creativity, and ignite our culture of connection and celebration. Our teams coordinate their time in Centers of Energy to reflect how they work best.  

LogicMonitor is an equal opportunity employer. We deeply care about our employees' well-being, creating an environment where everyone feels valued and respected. We celebrate the diversity of our team and are committed to fostering a culture of inclusivity. When you join LogicMonitor, you're not just an employee to us, but a valued member of our community. Come as you are, be yourself, and let's grow together.

To learn more about life at LogicMonitor, check out our Careers Page.

What You'll Do:

LM Envision, LogicMonitor's leading hybrid observability platform powered by AI, helps modern enterprises gain operational visibility into and predictability across their IT stacks, so they can continue to deliver extraordinary employee and customer experiences. LogicMonitor has a layered approach to intelligence, where AI and Machine Learning is baked into every facet of the LM Envision platform to help IT teams improve efficiency, minimize alert fatigue, proactively predict trends, and maximize enterprise growth and transformation. 

Our customers love LogicMonitor's ability to bring cloud and traditional IT together into one view, as seen in minimal churn rates, expansion business, and exciting new customer references. In fact, LogicMonitor has received the highest Net Promoter Score of any IT Infrastructure Management provider. LogicMonitor also boasts high employee satisfaction. We have been certified as a Great Place To Work®, and named one of BuiltIn's Best Places to Work for the sixth year in a row! 

LogicMonitor’s InfoSec Team is the backbone of trust that our customers depend on day after day.  The Staff Application Security Engineer will help drive and evolve LogicMonitor’s AppSec and Bug Bounty programs. You will be responsible for analyzing/investigating/validating the security of the engineering development owned applications and creating and continuously improving the bug bounty program.  You will work with a global software engineering team, product team, and product security team.

Here's a closer look at this key role:

  • Manage and continuously improve the external bug bounty program, including setting program scope, rules of engagement, and incentives for researchers to participate.
  • Triage reported vulnerabilities from the bug bounty program, prioritize them based on risk and impact assessments, and coordinate with internal development teams for timely resolution.
  • Regularly evaluate the performance and results of the bug bounty program, identify areas for improvement, and implement enhancements to mature the program over time.
  • Collaborate with external bug bounty platforms or vendors to ensure the program's effectiveness and efficiency.
  • Actively engage with external security researchers, fostering a collaborative relationship to encourage their participation in the bug bounty program and to facilitate effective communication throughout the vulnerability disclosure process.
  • Conduct manual verification of security issues identified through automated scans, manual tests or reported by external researchers to validate their severity and impact.
  • Collaborate with cross-functional teams to prioritize and address identified vulnerabilities based on risk and impact assessments.
  • Track and report on the status of vulnerability remediation efforts, including providing regular updates to stakeholders.
  • Stay informed about emerging security threats, industry best practices, and relevant regulations to continuously improve the effectiveness of our vulnerability management program. Experience with Security and Privacy threat modeling new features.
  • Analyze vulnerabilities and proactively target root causes by creating tools for codebase scanning, establishing effective patterns and systems, and enhancing security training for engineers.
  • Assist teams in threat modeling and cultivating a security mindset for their features, leveraging dedicated security expertise to complement the existing skills of our engineers.
  • Investigate user security issues, utilizing product knowledge and logs to understand incidents and proposing improvements to monitoring for quicker detection of similar issues.

 

What You'll Need:

  • 8+ years experience with Application security

  • Experience with application security standards such as OWASP ASVS/Top 10, CWE 25.
  • Experience with common security libraries, security controls, and common security flaws.
  • Outstanding collaboration and partnership skills, with proven ability to drive results across teams.

 

 

LogicMonitor Pune, Maharashtra, IND Office

LogicMonitor expanded to India in 2019, and shortly after launched of our Center of Excellence in India, located in a major tech hub in Pune. Across the globe, our Centers of Energy serve as hubs where we accelerate productivity and collaboration, and inspire creativity.

Similar Jobs at LogicMonitor

2 Days Ago
Pune, Maharashtra, IND
1,100 Employees
Senior level
1,100 Employees
Senior level
Artificial Intelligence • Cloud • Information Technology • Machine Learning • Software
As a Senior Platform Security Engineer, you will design, build, and manage security controls for infrastructure, standardizing security best practices across cloud platforms, deploying security tools, and managing risk associated with vulnerabilities. You'll collaborate with various teams to ensure the security of both cloud workloads and endpoints and improve overall security metrics and processes.

What you need to know about the Pune Tech Scene

Once a far-out concept, AI is now a tangible force reshaping industries and economies worldwide. While its adoption will automate some roles, AI has created more jobs than it has displaced, with an expected 97 million new roles to be created in the coming years. This is especially true in cities like Pune, which is emerging as a hub for companies eager to leverage this technology to develop solutions that simplify and improve lives in sectors such as education, healthcare, finance, e-commerce and more.

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account