Security Engineer (Surface Coverage)

Location: Bengaluru, India

Department: Security

Work Mode: Hybrid

About the Role

Docusign brings agreements to life. Over 1.5 million customers and more than a billion people in over 180 countries use Docusign solutions to accelerate the process of doing business and simplify people’s lives. With intelligent agreement management, Docusign unleashes business-critical data trapped inside of documents. As the #1 company in e-signature and contract lifecycle management (CLM), we empower companies to create, commit, and manage agreements seamlessly. Join our innovative culture where trust, security, and cutting-edge technology drive us to make the world more agreeable. Join our vulnerability management team as a Security Engineer (Surface Coverage) to support digital surface coverage for Docusign's Intelligent Agreement Management platform. In this technical individual contributor role reporting to the Sr Manager, Vulnerability and Configuration Management, you will operate discovery tools, analyze findings, validate results, assist in prioritizing remediation, and script automations. Work closely with infrastructure, platform, and security operations teams to mitigate potential exposure risks, ensuring the security of our e-signature and CLM solutions that billions rely on daily. Key responsibilities include running external discovery scans for freshness and accuracy, validating and deduplicating assets, opening contextual tickets, tracking remediation to closure, writing ETL automation scripts, maintaining dashboards for metrics like exposure MTTR, managing exception records, contributing to runbooks and playbooks, and assisting in high-risk surge responses. This hybrid role (minimum 2 days per week in-office) offers the chance to thrive in a metrics-driven environment fueled by DocuSign's passion for innovation and cybersecurity excellence. What you bring: A BS degree or equivalent in a relevant technology field, scripting experience in Python, Go, or TypeScript, SQL proficiency, basic cloud knowledge (AWS, Azure, GCP), and a passion for cybersecurity. Preferred: EASM tool exposure, familiarity with DNS/CDNs/WAFs, and data pipeline experience. Be detail-oriented, metrics-driven, a clear communicator, and eager to learn under mentorship in our collaborative, equal-opportunity culture. #LI-Hybrid #LI-SV6

Key Responsibilities

• Run external discovery scans using EASM tools; ensure data freshness and scope accuracy
• Validate discovered assets, deduplicate results, and tag ownership and environment details
• Open tickets with clear context for remediation; track takedown and hardening efforts to closure
• Write automation scripts for ETL processes, data enrichment, and evidence capture
• Maintain and update dashboards tracking unknown assets, exposure MTTR, and high-risk issues
• Keep exception records current with expiration dates and attach verification artifacts
• Contribute to runbooks, playbooks, and 'how-to' documentation for team processes
• Assist in surge response for high-risk exposures and communicate status updates to stakeholders
• Collaborate with infrastructure, platform, and security operations teams to mitigate exposure risks
• Analyze findings from discovery tools, validate results, and assist in prioritizing remediation efforts

Required Qualifications

• BS degree or equivalent in Computer Science, Information Technology, or a relevant technology field
• Coding experience with scripting and programming fundamentals in Python, Go, or TypeScript
• Proficiency in SQL for data querying and analysis
• Basic understanding of cloud platforms (AWS, Azure, or GCP), focusing on public endpoints and security groups
• Fundamental understanding of internet and networking principles
• Passion for cybersecurity and commitment to protecting digital assets
• Detail-oriented mindset with a metrics-driven approach to problem-solving

Preferred Qualifications

• Exposure to External Surface Coverage or EASM tools such as Microsoft Defender EASM, VirusTotal, or Wiz EASM
• Familiarity with DNS providers, Content Delivery Networks (CDNs), and Web Application Firewalls (WAFs)
• Experience working with data pipelines and reporting tools to visualize metrics and trends
• Previous experience in vulnerability management or security operations
• Demonstrated ability to script automations for security workflows

Required Skills

• Python, Go, or TypeScript scripting
• SQL querying
• Cloud platforms (AWS, Azure, GCP)
• Public endpoints and security groups management
• EASM tools (e.g., Microsoft Defender, VirusTotal, Wiz)
• DNS, CDNs, and WAFs
• Data pipelines and ETL processes
• Dashboard creation and metrics visualization
• Vulnerability validation and prioritization
• Automation scripting for security workflows
• Ticket management and tracking
• Runbook and playbook development
• Clear technical communication
• Detail-oriented analysis
• Metrics-driven decision making
• Cybersecurity fundamentals
• Networking principles
• Collaborative teamwork

Benefits

• Comprehensive health, dental, and vision insurance plans
• 401(k) retirement savings plan with company match
• Unlimited PTO and flexible work arrangements
• Professional development stipend and learning opportunities
• Stock purchase program and employee stock options
• Wellness programs including mental health support
• Parental leave and family planning benefits
• Volunteer time off and community impact initiatives
• Hybrid work model with collaborative office spaces

DocuSign is an Equal Opportunity Employer.