AVP - App Security

Mumbai
Dream11 – Technology
Full-time
Technology at Dream11:
Our tech team is the core of Dream11’s mobile-first cross-platform (desktop + mobile PWA, Android & iOS) fantasy product serving more than 5 crores + users with over 10 million rpm (requests per minute) at peak concurrency.
Our tech stack is hosted on AWS and is built on  Cloudfront / AWS API Gateway, NGINX, / Java, Redis / ElastiCache and MySQL / Cassandra as our end to end stack. Besides these, we heavily use MongoDB, Kinesis, Kafka, RabbitMQ, Spark, Redshift and other cutting edge techs to keep improving Dream11's performance. As a data-driven team, we also use R, Python and other big data technologies for Machine Learning and Predictive Analytics.

Your Role:
- Understand complex technical and architectural issues from the security perspective
- Review application security and approve application changes 
- Perform Manual / Automated Application Vulnerability Assessment & Penetration Testing 
- Set up process / policies / controls / standards to meet state of the art security compliances 
- Managing technical documents including VAPT / Application Security tracking and reporting.
- Highly focused on automation based methodology to get maximum output and coverage
- Manage / Collaborate with teams for Application Security Architecture and Development in the testing and remediation process
- 3rd Party Vendor / Auditor Management / Maintain MIS

Must Have:
- 7+ years experience in application security function having experience of working with developers throughout Secure Software Development Life Cycle. 
- Extremely proficient with manual penetration testing and with automated methods/tools.
- Good Exposure with Web Application Firewalls (WAF).
- Good Knowledge of programming languages like Python and JavaScript and understanding of RDBMS as well as NoSQL database technologies like MySQL, Redis, Cassandra etc.
- Knowledge of any cloud based platform like AWS, GCP etc.
- Ability to perform automated & manual secure code review and provide security guidance to developers.
- Expertise in Web / Mobile application security testing, static and dynamic analysis using tools

Bonus:
- Has proven experience in helping institutions identify critical security issues using responsible vulnerability disclosure programme (RVDP).
- Has participated in Bug Bounties & CTF.
- Having a gaming background and having good knowledge in any of the sports like Cricket, Kabaddi, Hockey or football
- Working in a growing start-up environment
 
About us:
Dream11 is India’s Biggest Sports Gaming platform with 5 crore+ users playing Fantasy Cricket, Football, Kabaddi and NBA. It is a Game of Skill that offers Indian sports fans a platform to showcase their sports knowledge. Fans can create their own team made up of real-life players from upcoming matches, score points based on their on-field performance and compete with other fans.

Dream11 helps sports fans increase their engagement and connect deeper with the sport they love by being a team owner, not just a spectator. Dream11 is also the Official Partner of the top sports leagues in the world such as the Hero CPL, Hero ISL and NBA.

A Mumbai based Series D funded startup, Dream11 was founded in 2012 by Harsh Jain and Bhavit Sheth. Kalaari Capital, Think Investments, Multiples Equity & Tencent are the marquee investors in Dream11.

Dream11 has been ranked #9 among India's Great Mid-Size Workplaces - 2018.

Our Dream Team of 150+ is based out of Mumbai, has been the engine of Dream11's exponential growth over the years. And now, we're looking for smart, self-motivated, passionate and skilled doers who can bring their A game to the table. If you are open to learning and unlearning and are driven by the desire to excel, Dream11 is just the place for you.

What is the Dream11 family like?
At Dream11, we don’t have employees, we have Dreamsters.
Dreamsters you can trust. Dreamsters who care deeply about you. Dreamsters who are intelligent, hard working, fun to be with and respect each other. We are a diverse team united by a common purpose: to make every game exciting for all sports fans.

What we promise?
An amazing stadium-like environment that you will love. A place where experiments and learning never stop. A place without micromanagement and bureaucracy. An opportunity to create an impact from day 1.
Come join India’s leading sports tech company. The grass is literally greener in our field.

Our Captains:
- Harsh Jain (Co-Founder & CEO; https://www.linkedin.com/in/harshj22 )
- Bhavit Sheth (Co-Founder & COO; https://www.linkedin.com/in/bhavitsheth )