JOB DESCRIPTIONWho we are:Grofers is leading the charge in transforming India’s vast, unorganised grocery landscape through cutting-edge technology and innovation. We believe every Indian deserves the opportunity to continually improve their life a process that often begins at home. As part of our mission of helping consumers make healthier, better choices when buying everyday products, we make a wide range of high-quality grocery and household products accessible, affordable, and available right at their doorsteps.
Built on a proprietary technology stack, the Grofers platform serves as a convergence of consumers looking for everyday essentials, partner stores who serve their needs efficiently, and manufacturers looking for a channel to reach a nation of consumers. While our technology caters to the burgeoning population of urban India, it is ready and poised to serve the next 100+ million Indians who are yet to start shopping online.
We believe the ecosystem we power can transform the lives of a billion Indians significantly over the coming decade. They will have access to everyday essentials like groceries at the best value, be able to discover products that improve their health and wellbeing, and spend more meaningful time with their families with the assurance that their essential needs are being looked after by us. On the other side of this virtuous cycle are the millions of local businesses catering to a nation’s needs, helping create more opportunities for employment, growth, and above all, a better life.
It’s a $600 Billion challenge to solve, which is why we are looking at hiring smart, articulate and ambitious individuals to be a part of the team building the future at Grofers. If this seems exciting to you, join us! Read more about us
Why you will love working with us:Customer love: We always put the interests of customers ahead of our own. We work hard to earn and keep their trust, and to bring them delight
Bias for action: We dream big, take risks and have a strong bias for action. In difficult situations we make sound decisions and take thoughtful action
Frugality: We are always looking for ways to do more with less – by creating the highest leverage possible with our time, as well as resources
Confidence: We are tenacious and optimistic, and do not take no for an answer. Our people are quietly confident and openly humble
Challenge status-quo: We are candid, authentic and transparent. We speak our mind, make connections that others miss and take smart risks
Learner’s mindset: We keep learning and evolving to be able to meet our audacious goal of empowering every Indian to lead a better life
About the Security team:The Security team ensures a strong culture of security to safeguard Grofers’ user data. We do this by transforming our infrastructure and processes to make security as simple as possible, embedding security in development workflows as much as possible and educating the entire organization about secure practices. We gravitate towards building the right systems for long term sustainable solutions. We do everything from building infrastructure features, application frameworks for security and designing policies to doing regular security audits and penetration testing activities.Millions of users trust Grofers with their daily needs. We strive towards upholding that trust and keeping our customers secure.
About the role:As an Engineering Manager for the security team, you will be responsible for overall security posture of Grofers IT landscape, providing security expertise to your team and other teams at Grofers, drive a culture of security by building processes and systems, ensure Grofers meets all necessary regulations, work with Grofers leadership in meeting business goals, report on security metrics and build a high performing team – hire, grow, mentor (this is a critical part of this role). You should have a keen desire to make Grofers a safe platform for our customers.
What you will do everyday: Manage and build our security team
Run different kinds of security practices such as application security, vulnerability management, cloud infrastructure security, compliance, etc
Manage the bug bounty program and timely closure of vulnerabilities
Define and report on information security metrics to management
Define the IT security policies, standards and guidelines to meet security goals and regulatory needs
Take build vs buy decisions – decide when to build and outsource when necessary. Work with vendors to perform security assessments, penetration testing, etc
Manage and mentor team members – grow individuals on the team, help them achieve their ambitions while keeping them aligned to company goals
Manage multiple security teams. Hire full time or contract engineers
Work closely with Grofers tech leadership to get the right security goals prioritized
Drive a culture of DevSecOps. Promote ”Shift Left” philosophy for security
Invest in building automated systems to reduce the cost of security operations
EXPERTISE AND QUALIFICATIONSSkills you need to do the job: 7-10 years of prior industry experience
Relevant engineering work experience and hands-on technical management experience
Track record in partnering with recruiting to build incredible engineering teams
Actively coached and mentored team members in their careers
Actively involved in setting product strategy for internal security products
Experience as a developer, ideally with Python but any other common language also works
Pentesting, threat modeling, and architecture review experience
Shipped several large scale projects with multiple dependencies across teams
Experience with running internal or external compliance processes. Some experience with relevant security certifications such as ISO27001, SOX, etc
Experience of working in cloud-native environments. We use AWS and Kubernetes extensively. Relevant experience with at least one is necessary. Experience with any cloud platform like GCP or Azure also works
Exceptional written and verbal communication skills
Good to have : Independently started self-sustaining teams
Consistently made culture choices that positively impact all of engineering
Experience with configuration management systems (such as Ansible, Chef, Puppet) or Infrastructure-as-code (Terraform)