Taro Logo

Lead Security Engineer - Application Security

Dream Sports

India's leading sports technology company with 280 million+ users, providing fantasy sports, sports content & commerce, and sports experiences platforms.
Mumbai, Maharashtra, India
Security
Staff Software Engineer
In-Person
501 - 1,000 Employees
7+ years of experience
Gaming · Sports

Description For Lead Security Engineer - Application Security

Dream Sports, India's premier sports technology company, is seeking a Lead Security Engineer to join their technology team in Mumbai. The role focuses on application security within a high-scale environment managing over 700 million requests per minute and 16.5 million concurrent users.

The technology stack is impressive, featuring 190+ microservices written in Java with Vert.x framework, working with terabytes of data using technologies like Kafka, Redshift, Spark, and Druid. The infrastructure is AWS-based and utilizes distributed systems including Cassandra, Aerospike, Akka, Voltdb, and Ignite.

As the Lead Security Engineer, you'll be instrumental in embedding security throughout the software development lifecycle, working closely with development, DevOps, and product teams. Your responsibilities will include conducting security architecture reviews, performing vulnerability assessments, and implementing automated security workflows.

The ideal candidate brings 7+ years of AppSec experience, with deep expertise in mobile and web security testing. You should be passionate about security, as demonstrated through participation in bug bounty programs or CTFs, and have strong knowledge of security frameworks like OWASP Top 10 and SANS 25.

Dream Sports, powering brands like Dream11 (world's largest fantasy sports platform with 260M+ users), FanCode, and DreamSetGo, offers an opportunity to impact sports technology at scale. The company's vision of 'Making Sports Better' through technology makes this an exciting opportunity for security professionals who want to protect and enable sports entertainment platforms.

Last updated 7 days ago

Responsibilities For Lead Security Engineer - Application Security

  • Embed security across the SDLC by working closely with development, DevOps, and product teams
  • Lead secure architecture/design reviews and perform deep-dive assessments for web and mobile apps
  • Conduct manual and automated vulnerability testing, including penetration tests
  • Promote secure coding and threat modeling through training and best practice guidance
  • Build and automate security tools/workflows, ideally using GenAI
  • Support incident response efforts for application-layer threats, and plan relevant short/long-term remediations

Requirements For Lead Security Engineer - Application Security

Java
Python
Go
  • 7+ years in AppSec, with 4+ years in mobile/web security testing and secure code reviews
  • Participation in bug bounty programs, CTFs, or open-source security projects
  • Strong knowledge of OWASP Top 10, SANS 25, and scalable mitigation strategies
  • Skilled in at least one language (e.g., Python, Java, Golang), with experience in building security automation, custom tools, or guardrails
  • Familiarity with WAFs, SIEM/log analytics solutions, and incident response workflows

Jobs Related To Dream Sports Lead Security Engineer - Application Security

Taro Footer Icon
Taro Footer Logo
Explore Interview QuestionsGoogle Interview QuestionsMeta Interview QuestionsAmazon Interview QuestionsApple Interview QuestionsNetflix Interview Questions
Explore Jobs By LevelEntry-Level Software Engineer JobsMid-Level Software Engineer JobsSenior Software Engineer JobsStaff Software Engineer Jobs
Explore TrendingLayoffsPerformance Improvement PlanSystem DesignInterpersonal CommunicationTech Lead
ProductH-1B Visa Salary DatabaseBecome An AffiliateGreat DiscussionsPerksTopics
CompanyBlogPrivacy PolicyTerms & ConditionsSupport
Taro iOS appTaro Android app
LinkedIn IconTwitter IconYouTube Icon
Copyright © Taro