Director, Security Engineering at Circles

Bengaluru, karnataka, India -

Full Time

Start Date

Immediate

Expiry Date

17 Jul, 26

Salary

0.0

Posted On

18 Apr, 26

Experience

10 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Security Engineering, DevSecOps, Cloud Security, S-SDLC, Python, Java, Go, Node.js, Kubernetes, Docker, Terraform, API Security, CI/CD, Vulnerability Management, AWS, Microservices

Industry

Software Development

Description

Founded in 2014, Circles is a global technology company reimagining the telco industry with its innovative SaaS platform, empowering telco operators worldwide to effortlessly launch innovative digital brands or refresh existing ones, accelerating their transformation into techcos. Today, Circles partners with leading telco operators across multiple countries and continents, including KDDI Corporation, Etisalat Group (e&), AT&T, and Telkomsel, creating blueprints for future telco and digital experiences enjoyed by millions of consumers globally. Besides its SaaS business, Circles operates three other distinct businesses: Circles.Life: A wholly-owned digital lifestyle telco brand based in Singapore, Circles.Life is powered by Circles’ SaaS platform and pioneering go-to-market strategies. It is the digital market leader in Singapore and has won numerous awards for marketing, customer service, and innovative product offerings beyond connectivity. Circles Aspire: A global provider of Communications Platform-as-a-Service (CPaaS) solutions. Its cloud-based Experience Cloud platform enables enterprises, service providers and developers to deliver and scale mobile, messaging, IoT, and connectivity services worldwide. Jetpac: Specializing in travel tech solutions, Jetpac provides seamless eSIM roaming for over 200 destinations and innovative travel lifestyle products, redefining connectivity for digital travelers. Jetpac was awarded Travel eSIM of the Year. Circles is backed by renowned global investors, including Peak XV Partners (formerly Sequoia), Warburg Pincus, Founders Fund, and EDBI (the investment arm of the Singapore Economic Development Board), with a track record of backing industry challengers. Role - Director, Security Engineering Location - Bangalore Role Overview We are looking for a Director of Security Engineering reporting to our CSO, to build and scale secure-by-design engineering across our platform dealing with highly regulated and hybrid infrastructures. You will own end-to-end security across: Code → APIs\Web\Connectors → Containers → Cloud → Data Your mission is simple: Make security invisible, automated, and built into everything we ship. What You’ll Do 1. Secure the Development Lifecycle (S-SDLC) Embed security into everyday development workflows Drive adoption of: Secure Design SAST (code scanning) SCA (open-source dependency security) DAST (runtime testing) Integrate security into CI/CD pipelines (GitLab\Bit bucket) Define secure coding standards for developers Ensure vulnerabilities are fixed fast, not just found 2. Secure Cloud & Infrastructure (IaaC) Own security for cloud environments Secure infrastructure built using Terraform / IaC Drive tools and controls across: Cloudflare (WAF, API security, bot protection) Qualys (vulnerability management) CrowdStrike (endpoint & workload protection) CSPM tools (cloud posture management) Enforce baseline security policies across all environments 3. Full Stack Security (End-to-End) Secure everything across the stack: Frontend & Mobile Apps Backend APIs & Microservices Containers & Kubernetes (Docker, K8s) Cloud Infrastructure Data & AI pipelines Focus areas: API security (OWASP Top 10) Container security (image scanning, runtime protection) Secure microservices architecture 4. Work Closely with Engineers (Not Against Them) Partner with developers, DevOps, and SRE teams Make security easy to adopt, not a blocker Provide tools, automation, and guardrails Drive a culture where engineers own security 5. Build & Lead the Team Build a strong security engineering team Coach teams on secure coding and cloud security Work closely with CISO, CTO, and product leaders What We’re Looking For? Technical Skills Programming experience in one or more: Python, Java, Go, Node.js Strong understanding of: APIs and microservices Containers (Docker, Kubernetes) Cloud (AWS preferred) Hands-on with: CI/CD pipelines (GitLab or similar) Security tools (SAST, SCA, DAST) IaC (Terraform) Mindset Builder mindset (not just governance) Automation-first thinking Ability to simplify security for engineering teams Focus on speed + security together Experience 12+ years in security engineering / DevSecOps Strong experience in S-SDLC and cloud security Background in SaaS / cloud-native environments Telco\Digital telco domain experience would be plus Circles is committed to a diverse and inclusive workplace. We are an equal opportunity employer and do not discriminate on the basis of race, national origin, gender, disability or age. Data Protection and Privacy Statement By submitting an application for this position, you, as the applicant, or your authorised representative(s), consent to Circles’ Candidate Data Protection and Privacy Policy. You also agree to the collection, use, and/or disclosure of your personal data by us solely for recruitment purposes as specified in the Policy. You acknowledge that you have read and understood the Policy, are aware of your rights regarding your personal data, and accept the terms relating to international data transfers, where applicable. You further understand that you may withdraw consent at any time, which may affect our ability to consider your application. In instances where your personal data or application is submitted by a third party, it is understood that such third party has been duly authorised by you to disclose the relevant personal data and provide consent on your behalf, and that you have been made aware of this Policy. To all recruitment agencies: Circles will only acknowledge resumes shared by recruitment agencies if selected in our preferred supplier partnership program. Please do not forward resumes to our jobs alias, Circles, employees or any other company location. Circles will not be held accountable for any fees related to unsolicited resumes not uploaded via our ATS. Founded in 2014, Circles is a global technology company reimagining the telco industry with its innovative SaaS platform, empowering telco operators worldwide to effortlessly launch innovative digital brands or refresh existing ones, accelerating their transformation into techcos. Today, Circles partners with leading telco operators across multiple countries and continents, including KDDI Corporation, Etisalat Group (e&), AT&T, and Telkomsel, creating blueprints for future telco and digital experiences enjoyed by millions of consumers globally. Besides its SaaS business, Circles operates three other distinct businesses: Circles.Life: A wholly-owned digital lifestyle telco brand based in Singapore, Circles.Life is powered by Circles’ SaaS platform and pioneering go-to-market strategies. It is the digital market leader in Singapore and has won numerous awards for marketing, customer service, and innovative product offerings beyond connectivity. Circles Aspire: A global provider of Communications Platform-as-a-Service (CPaaS) solutions. Its cloud-based Experience Cloud platform enables enterprises, service providers and developers to deliver and scale mobile, messaging, IoT, and connectivity services worldwide. Jetpac: Specializing in travel tech solutions, Jetpac provides seamless eSIM roaming for over 200 destinations and innovative travel lifestyle products, redefining connectivity for digital travelers. Jetpac was awarded Travel eSIM of the Year. Circles is backed by renowned global investors, including Peak XV Partners (formerly Sequoia), Warburg Pincus, Founders Fund, and EDBI (the investment arm of the Singapore Economic Development Board), with a track record of backing industry challengers.

Responsibilities

The Director of Security Engineering will build and scale secure-by-design engineering practices across the company's highly regulated hybrid infrastructure. This role involves securing the entire development lifecycle, cloud environments, and full-stack applications while fostering a culture of security among engineering teams.