InfoSec - Application & Cloud Security Engineer (L2)
Back to Jobs
OpenFXGet Smart Job AI Coach in the appFree on iOS and Android 





InfoSec - Application & Cloud Security Engineer (L2)
Location
Bangalore
Experience
Mid
Posted
Jul 7, 2026
Apply by
August 6, 2026
Applicants
0
Early applicantEasy applyFull-timeHybrid
Job Description
## About Us
OpenFX is on a mission to move money as freely as data, unrestricted by time zones, banking hours, or legacy systems. We are building the infrastructure that will power the next generation of cross-border payment systems for institutions. The team's execution has been exceptional, and we're scaling at a remarkable pace. Our stellar early team comes with experience in companies like J.P. Morgan, Goldman Sachs, FalconX, PayPal, Affirm, Polygon, Kraken, Nium & others. We're backed by Accel, Faction, NfX, Accomplice, and other top-tier investors.
## Role Overview
This is a **hybrid Application + Cloud Security role** for an engineer who has 2–4 years of hands-on security experience and is ready to grow into a specialist. You'll spend roughly half your time supporting AppSec (code review, secure SDLC tooling, threat modeling, findings triage) and half on CloudSec (AWS account security, IAM reviews, Kubernetes hardening, WAF tuning).
You'll partner closely with our Sr. Application Security Engineer and Cloud Security Engineer (both L3), picking up increasingly complex work as you ramp. The goal is for you to develop deep expertise in one of the two specializations within 12–18 months while remaining strong across both.
This role is ideal for someone who is technically curious, has shipped real security work (not just evaluated tools), and wants to grow fast in a high-stakes fintech environment.
## Key Responsibilities
### Application Security (~50%)
- Perform manual and automated code reviews alongside the Sr. AppSec engineer, with growing independence over time
- Triage, reproduce, and drive remediation on findings from SAST, DAST, SCA, bug bounty, and internal reports
- Support threat-modeling sessions for new services and features
- Tune and maintain AppSec tooling in CI/CD to minimize noise and maximize signal
- Partner with engineering pods to help developers fix issues the right way the first time
### Cloud Security (~50%)
- Support AWS account security: IAM policy reviews, least-privilege analysis, and guardrail enforcement via Config/SCPs
- Help harden Kubernetes clusters — admission control (OPA/Gatekeeper, Kyverno), RBAC hygiene, secrets management
- Tune WAF rules (AWS WAF / Cloudflare) to reduce false positives without creating blind spots
- Run vulnerability scans against cloud infrastructure and containers; drive remediation with DevOps
- Contribute to security automation: small tools and scripts that reduce manual work (Python / Go / Bash)
- Monitor GuardDuty, Security Hub, and Config findings; triage and escalate as needed
### Cross-cutting
- Contribute to security policies, standards, runbooks, and incident playbooks
- Participate in InfoSec on-call rotation
- Research emerging threats and bring recommendations back to the team
## What We're Looking For
### Required
- **2–4 years** of hands-on experience in Application Security, Cloud Security, or a closely related role
- Solid grounding in security fundamentals: OWASP Top 10, TLS/PKI basics, OAuth/JWT, common cloud attack patterns
- Hands-on exposure to **both** AppSec (at least one of SAST/DAST/manual review) **and** CloudSec (at least one of AWS/GCP/Azure) — you don't need to be expert in both, but you should have shipped work in both
- Scripting ability in Python, Go, or Bash — you can write useful internal tools, not just one-liners
- Clear communicator — can translate a finding into something an engineer will actually fix
- Hunger to grow — you take feedback well, go deep on topics, and own your ramp
### Preferred
- Degree or equivalent experience in Computer Science, Information Security, or similar
- Exposure to Kubernetes in production, even if not as the primary owner
- Familiarity with IaC (Terraform) and how security gets enforced (or bypassed) in code
- Bug bounty, CTF, or open-source security contributions — demonstrated curiosity outside the 9-to-5
- Certifications a plus but not required: AWS Security Specialty, OSCP, CKS, CEH
## What We Offer
- Competitive salary and benefits package
- Equity in a rapidly growing company
- Opportunity to work in a fast-paced startup at the forefront of fintech innovation
- A real growth path — this role is designed to develop you into an L3 specialist
- Collaborative work culture with emphasis on personal and professional growth
We are committed to building a diverse and inclusive workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.
Key Responsibilities
- Perform manual and automated code reviews and triage security findings from SAST, DAST, and bug bounty programs.
- Support AWS account security including IAM policy reviews and guardrail enforcement via Config/SCPs.
- Harden Kubernetes clusters using admission controls, RBAC hygiene, and secrets management.
- Tune WAF rules to reduce false positives and monitor GuardDuty and Security Hub findings.
- Contribute to security automation using Python, Go, or Bash scripts.
- Participate in InfoSec on-call rotation and contribute to security policies and incident playbooks.
Skills Required
Application SecurityCloud SecurityOWASP Top 10TLSPKIOAuthJWTSASTDASTAWSGCPAzurePythonGoBashKubernetesOPAGatekeeperKyvernoAWS WAFCloudflareGuardDutySecurity HubCommunicationProblem solvingReceptiveness to feedbackOwnershipTerraformIaCCuriositySelf-motivation
Benefits
- Competitive salary
- Benefits package
- Equity
- Growth path to L3 specialist
App exclusive · Free
Smart Job AI Coach
Your personal interview coach on every job — readiness tips, profile improvements, and role-specific prep. Available only in the Pulse Job app.
Interview readiness
See how prepared you are and what to improve for each role.
Personalized tips
Actionable suggestions based on your profile and the job.
After you apply
Keep coaching momentum from job detail through application success.
Similar roles for you
Matched using this role's title and skills. Open the job search anytime to see every listing.

Principal Solutions Engineer
Wiz
Full-timeWork from Home
Remote - SpainSenior

Principal Solutions Engineer, Central
Wiz
196,000–217,000 / Year
Full-timeWork from Home
Remote - USASenior

Principal Solutions Engineer
Wiz
Full-timeWork from Home
Remote - NetherlandsSenior

Principal Solutions Engineer
Wiz
Full-timeWork from Home
Remote - SwedenSenior

NEW- Applied AI Engineer, Site Reliability Engineer - EMEA
Mistral
Full-timeEasy applyWork from Home
ParisSenior

Application Security Developer
Clio
116,500–157,500 / Year
Full-timeEasy applyHybrid
TorontoMid