Lead Application Security Engineer

InMobi is hiring a Lead Application Security Engineer in Bangalore.

InMobi Advertising is a global technology leader helping marketers win the moments that matter. Our advertising platform reaches over 2 billion people across 150+ countries and turns real-time context into business outcomes, delivering results grounded in privacy-first principles. Trusted by 30,000+ brands and leading publishers, InMobi is where intelligence, creativity, and accountability converge. By combining lock screens, apps, TVs, and the open web with AI and machine learning, we deliver receptive attention, precise personalization, and measurable impact. Through Glance AI, we are shapin

Requirements

• Minimum 7 years of experience in Application Security, Penetration Testing, DevSecOps, or Security Engineering.

• Proven hands-on ability with SAST/DAST/SCA, CI/CD security gates, and vulnerability triage/remediation workflows.

• 2–3 years’ experience building and managing security gating in Checkmarx (or equivalent).

• 2–3 years’ experience performing manual security code review (APIs/services; common languages: Java/Python/Node.js).

• Familiarity with OAuth2, OIDC, JWT, mTLS, API gateways, and service-to-service identity.

• Strong knowledge of OWASP Top 10 Mobile, OWASP Top 10 LLM.

• Strong experience with common testing tools: Burp Suite, OWASP ZAP, SQLMap, Kali (and similar).

• Scripting/automation skills using Python, plus Bash/PowerShell familiarity.

• Working knowledge of Docker/Kubernetes, cloud-native patterns, and secrets management basics.

• Solid communication skills—ability to write clear findings, influence engineering decisions, and partner effectively.

AI-Specific Technical Skills (Expected Competency)

• Hands-on familiarity with LLM integrations and Python AI ecosystems (e.g., LangChain / orchestration frameworks).

• Understanding of RAG pipelines and vector database concepts (e.g., Pinecone, FAISS, Milvus or equivalent).

• Ability to design/validate guardrails (policy allow/deny, jailbreak detection, output validation, safe tool calling).

• Familiarity with AI security testing patterns (prompt injection testing, data leakage testing, agent/tool abuse testing).

Preferred qualifications

• Bug bounty / responsible disclosure recognition (Hall of Fame, awards).

• Experience deploying and scaling open-source security tools in production.

• Certifications: OSCP, OSCE, GWAPT, GPEN, CSSLP

• Any AI security-focused training (LLM security, RAG security, adversarial testing, ATLAS/LLM Top 10 programs).

The InMobi Culture

At InMobi, culture isn’t a buzzword; it's an ethos woven by every InMobian, reflecting our diverse backgrounds and experiences.

We thrive on challenges and seize every opportunity for growth. Our core values — thinking big, being passionate, showing accountability, and taking ownership with freedom — guide us in every decision we make.

We believe in nurturing and investing in your development through continuous learning and career progression with our InMobi Live Your Potential program.

InMobi is proud to be an Equal Employment Opportunity employer and is committed to providing reasonable accommodations to qualified individuals with disabilities throughout the hiring process and in the workplace.

Visit https://www.inmobi.com/company/careers to better understand our benefits, values, and more!

About InMobi

See the company's official careers page for full details, then apply using the button below.