Cyber Security Engineer
Indexed description
Role Overview
We are looking for a Cybersecurity Engineer who can review eyouth systems end-to-end across code,
infrastructure, CI/CD, AWS, authentication, authorization, data privacy, and production deployment practices.
This role should have enough technical depth to understand our current engineering stack and review
backend, frontend, mobile, AI, and cloud systems before and after release.
Key Responsibilities
• Perform secure code reviews across backend, frontend, dashboard, mobile, and AI-related systems.
• Review Django/DRF APIs, serializers, permission classes, authentication, authorization, and sensitive
admin workflows.
• Review CI/CD pipelines for insecure deployment steps, exposed secrets, missing security gates, and
weak access control.
• Review AWS infrastructure, including S3, CloudFront, IAM, RDS/PostgreSQL, Redis/ElastiCache,
ALB/security groups, and environment configuration.
• Review file upload and download flows, signed URLs, public/private media access, and data leakage
risks.
• Review JWT/session handling, password reset, role-based permissions, single-session enforcement, and
admin-level actions.
• Review frontend and mobile security, including token storage, XSS risks, API interceptors, route guards,
and secure client behavior.
• Review AI-related risks, including prompt injection, PII leakage, unsafe prompt construction, and third-
party AI data sharing.
• Conduct vulnerability assessments and pre-release security audits.
• Create security checklists for code review, deployment review, and production readiness.
• Document findings with severity, impact, evidence, and recommended remediation steps.
Requirements & Qualifications
• 3+ years of experience in Application Security, Cloud Security, Cybersecurity Engineering, or Security-focused Software Engineering.
• Strong experience in secure code review, API security, and common web vulnerabilities.
• Good understanding of OWASP Top 10, authentication, authorization, and session security.
• Experience reviewing CI/CD pipelines and deployment workflows.
• Hands-on experience with AWS security services including IAM, S3, CloudFront, RDS/PostgreSQL, Redis/ElastiCache, ALB, and Security Groups.
• Good understanding of backend technologies, especially Python, Django, and Django REST Framework.
• Good understanding of frontend and mobile security risks.
• Experience with Git workflows, pull request reviews, and collaboration with engineering teams.
• Ability to identify security issues and provide practical engineering solutions.
Preferred Technical Stack Awareness:
• Python, Django, Django REST Framework, Channels, Celery, Redis, PostgreSQL, and SimpleJWT.
• React/Vite applications using React Query, Zustand, axios, Tailwind, and localization.
• Flutter applications using BLoC, Dio, GoRouter, Firebase Messaging, and local token storage.
• AWS infrastructure and environment-based configurations.
• Firebase Admin SDK, SMTP, OpenAI APIs, file upload workflows, and PII-heavy systems.
Work Conditions & Benefits
• Hybrid work model
• 2 days off weekly
• Medical insurance
• Working hours from 9:00 AM to 5:00 PM
How to apply
Please send your resume to [email protected] and mention the job title in the email subject.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search