AppSec Jobs
← Back to all jobs

Harness

Security Research Engineer - Shift Left Security

Bengaluru, Karnataka, IndiaWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About Harness

Harness is an AI-native software delivery platform that automates the entire software development lifecycle (SDLC). Founded in 2017 by Jyoti Bansal, the company focuses on helping developers ship code faster and more securely. Harness has raised $570 million in venture capital and serves the global community of software developers with a self-service platform that leverages AI and machine learning. The platform features modular components that support various deployment environments, including SaaS, on-premise, and hybrid setups. Key offerings include Continuous Integration (CI) for fast builds, Continuous Delivery (CD) for streamlined deployments, and Continuous Verification for risk reduction and security testing. Harness also emphasizes developer productivity through insights and automation, alongside robust security measures. The company provides professional services for onboarding, migration, and education to ensure effective adoption of its tools.

Industry

information technology & services

Employees

1,600

610 engineers

Revenue

$100M

Website

Visit →

Security at Harness

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

  • Harness's AppSec philosophy emphasizes a comprehensive approach to data privacy and security, protecting infrastructure, products, and customer data.
  • Security is embedded throughout their software development lifecycle, and all production changes require peer review and approval.
  • Their product-level security offerings include "Application & API Posture Management"and they provide a way to "Report a security bug".
  • Research indicates that "74% say developers see security as a blocker to innovation"and "62% say developers don't have the training to implement comprehensive AI security".
  • They emphasize "DevSecOps From Day One"and use "DAST to identify security risks prior to production.".

Security Team

  • Andrew Spangler is listed as the "Head of Security & Compliance"at Harness.
  • Careers and job postings indicate responsibilities related to "AI for Security & Compliance"and "Security Testing Orchestration".
  • Common skill patterns in job descriptions include "Strong experience with AWS, GCP, or Azure.", "Experience with infrastructure automation such as Terraform.", and the responsibility to "Contribute to meeting our security standards and compliance requirements.".

Key Initiatives

Harness runs security scans at least monthly and adheres to NIST vulnerability remediation timelines. Security is embedded throughout their software development lifecycle.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.