Principal Security Engineer – Remote – Bengaluru, India

🔐 Job Title: Principal Security Engineer

📍 Location: Remote – Bengaluru, India
🏢 Department: Security
🕒 Employment Type: Full-Time

🧭 About the Role

Atlassian is seeking a Principal Security Testing Engineer to drive technical leadership, shape best-in-class penetration testing practices, and scale a growing team in India. In this hands-on and strategic role, you will work closely with the Security Testing Manager to mature Atlassian’s security assurance capabilities, perform manual penetration tests and code reviews, and build a team of highly skilled offensive security engineers.

You’ll act as the technical subject matter expert (SME) for offensive security, equipping the team with advanced tools, methodologies, and guidance to proactively uncover vulnerabilities that commercial tools often miss.

🚀 Key Responsibilities

• Lead manual penetration testing and code reviews of Atlassian’s applications and infrastructure.
• Establish and scale a world-class penetration testing team based in Bangalore.
• Provide deep technical expertise and mentorship to junior testers.
• Continuously evolve and improve security testing workflows and tools.
• Collaborate with security, engineering, and product teams to ensure high-assurance development.
• Analyze vulnerability trends and identify security gaps.
• Contribute to the development of holistic security testing strategies and frameworks.
• Support hiring efforts to attract top-tier offensive security talent.

🎯 Success Metrics

Early Milestones:

• Discovering critical vulnerabilities pre-production.
• Establishing strong internal relationships across engineering and security.
• Setting up streamlined testing processes tailored to Atlassian’s environment.
• Identifying team talent needs and recruiting top security testers.

Mid-to-Long Term Goals:

• Build and lead a team of 5–7 high-performing penetration testers.
• Fully integrate the India-based team with global operations.
• Lead proactive security efforts embedded across product lifecycles and CI/CD pipelines.

✅ Required Qualifications

• 6+ years in penetration testing within consulting or in-house security teams.
• 2+ years in a technical leadership role within an offensive security function.
• Proven hands-on expertise in white-box testing, especially for full-stack and cloud-native applications.
• Experience conducting thorough code reviews and security assessments.
• Strong track record in leading complex engagements and mentoring junior testers.
• In-depth understanding of modern cloud environments (AWS, Azure, or GCP).
• Ability to articulate technical findings to both technical and non-technical stakeholders.
• Hands-on capability to conduct pen tests independently on cloud-based applications.

⭐ Bonus Points For

• Published CVE discoveries, open-source contributions, or public write-ups.
• Industry certifications like OSWE, OSCP, OSCE, CREST CRT, or GPEN.
• Conference speaking engagements or security blogs.
• Familiarity with secure SDLC and DevSecOps pipelines.

🎁 What We Offer

• Fully remote flexibility (work from anywhere in India).
• Comprehensive health & wellbeing programs.
• Paid volunteer days to engage with your community.
• Career development and continuous learning opportunities.
• Inclusive culture with equitable hiring practices and support accommodations.
• Access to industry-leading security tools, infrastructure, and thought leaders.

🌍 About Atlassian

Atlassian builds tools that power collaboration and innovation for teams globally. From Jira and Confluence to Trello and Bitbucket, our products help teams work better together. As a distributed-first company, we empower our people to work from wherever they thrive most.

Diversity and inclusion are not buzzwords here—they’re essential to our mission of unleashing the potential of every team.