Hello! đź‘‹
Who are we?
Locus.sh is a leading-edge technology company dedicated to solving the most challenging problems in logistics and supply chain. Our ambition? To revolutionize the supply chain realm through cutting-edge technology, enabling smarter, automated decision-making. From dispatch management and carrier orchestration to route optimization and real-time insights, our solutions are designed to enhance efficiency, consistency, and transparency in operations.
Our Journey and Impact:
Since our inception in 2015, with the backing of esteemed investors like GIC Singapore, Qualcomm Ventures, Tiger Global, and Falcon Edge ($80M raised so far), we've embarked on a global mission to redefine logistics. Our technologies have empowered giants like Unilever, Nestle, and The Tata Group, facilitating over 1 billion deliveries across 30+ countries. The result? A staggering $288 million in cost savings, a 12 million tonne reduction in CO2 emissions, and an unwavering 99.5% SLA adherence.
Our Global Footprint:
Based in Bangalore, India, our reach extends across the Americas, Southeast Asia, the Middle East, and beyond. As a vibrant team of 170+ visionaries, we're on an exhilarating growth trajectory.
Traits We Value:
Global: You possess a global mindset, understanding and appreciating diverse cultures and market nuances. You're adept at thinking beyond borders and appreciate the vast opportunities that a worldwide perspective brings.
Unrelenting: You display unmatched perseverance and commitment in everything you do. Challenges invigorate you, and you are determined to overcome obstacles with innovative solutions.
Intelligent: You consistently demonstrate sharp analytical thinking and astute problem-solving capabilities. You're quick to grasp complex concepts and can effectively communicate intricate ideas.
Roles and Responsibilities:
Conduct comprehensive threat modeling for applications, cloud infrastructure, and overall systems architecture.
Perform secure code reviews and security assessments for web, Android, and iOS applications, with a strong focus on cloud infrastructure security.
Proactively identify and mitigate vulnerabilities across platforms, collaborating with development and DevOps teams to implement secure solutions.
Automate and streamline security processes, aligning with the principle that “Complexity is the enemy of Security.”
Oversee Vulnerability Management and Patch Management processes, ensuring timely remediation.
Design and implement robust security measures and contribute to Red Team activities, including assessments of cloud, network, wireless, physical, and social engineering scenarios.
Take ownership of assigned tasks and drive the continuous improvement of security practices across the organization.
Assist in setting up and maintaining monitoring systems to identify and respond to potential incidents in real time.
Develop custom tools, scripts, and scanners to address unique security challenges and automate repetitive tasks.
Provide architectural guidance for securing cloud-based applications and DevOps pipelines.
Continuously stay updated on emerging security technologies and techniques, sharing knowledge with the team.
Who would fit the role:
3-5 yrs experienced Sr security engineer.
Expertise in cloud security (AWS, Azure, or GCP) with a strong understanding of securing applications and infrastructure in cloud environments.
Proficiency in DevOps and DevSecOps practices, including secure CI/CD pipeline integration and automation.
Strong knowledge of OWASP and SANS testing methodologies for identifying and mitigating security vulnerabilities.
Good understanding of software security weaknesses, architecture vulnerabilities, and mitigation strategies.
Hands-on experience in threat modeling, vulnerability assessments, and penetration testing.
Proficiency in any scripting language - Python.
Experience in developing or customizing tools, scanners, or extenders for specific security needs.
Ability to work independently and collaboratively within a team to solve complex security challenges.
Experience in implementing security monitoring systems for early incident detection.
Strong problem-solving skills and the ability to think creatively to simulate attack scenarios. Preferred Qualifications:
Certification in security-related fields (e.g., AWS Certified Security, CISSP, CEH, OSCP).
Experience with container security and orchestration platforms like Kubernetes and Docker.
Knowledge of Infrastructure as Code (IaC) tools like Terraform or CloudFormation.
Familiarity with modern DevOps tools (e.g., Jenkins, GitLab, Ansible).
Life at Locus comes with added benefits as well:
A comprehensive Health Insurance policy that covers you and also your loved ones
No leave restrictions(you manage your own leaves)
At Locus, every member is an owner and a leader, no matter which team or function they represent. We believe that you are excited about the potential to make an impact in Last-mile deliveries through
technology and the prospect of creating a legacy that outlasts you! The biggest joy of working at Locus, for all of us, comes from the opportunity to create value each day and experience autonomy in all we do.