Companies you'll love to work for

About Decentro

Decentro is a Y-Combinator backed banking & payments infrastructure company. Decentro provides building blocks that help companies stitch their fintech workflows in a few weeks.
While starting our first fintech venture back in 2014, we spent years convincing banks to partner with us. Before we could launch our fintech product (more here), we had to convince different departments within banks - including technology, business, leadership, legal, and support to get the green signal. Fast forward to today, we realise that banks & regulatory institutions find it difficult to help the longer tail of companies build innovative & compliant fintech solutions.

What if there was a platform (think AWS for cloud or Twilio for messaging) that abstracts the complexities of banking, identity, payments, lending, and provides simple APIs so that companies do not have to spend years dealing with banks?

We’re solving this pain point at Decentro since 2020. We’ve scaled to process $4 billion + in payment volumes & have 1400+ customers across India & Singapore in multiple verticals such as marketplaces, banks, regulated institutions, fintechs, lenders, gaming, and more.

Decentro seeks a Principal Security Engineer (DevSecOps) to own our information security posture and DevSecOps practices in a hands-on IC capacity. This senior individual contributor will lead our small security team, reporting directly to the CISO or engineering leadership, while mentoring a DevOps Engineer and Infosec Associate.

Role Overview
Lead the design, implementation, and evolution of Decentro's security architecture and secure SDLC in a fast-paced fintech environment. Own threat modeling, compliance (RBI/SEBI/IFSCA), and security tooling while staying deeply technical—balancing hands-on engineering with light team leadership.

What Is Expected From You

• Architect and maintain secure CI/CD pipelines, integrating SAST/DAST/SCA tools (e.g., SonarQube, Trivy, Checkmarx) across AWS/infra.
• Conduct risk assessments, vulnerability management, and incident response for payments/UPI/KYC systems.
• Drive Infosec policies, merchant onboarding security, and compliance audits (PA-PG guidelines, CKYC).
• Mentor 1-2 direct reports (DevOps Engineer, Infosec Associate) on best practices; lead security reviews and training.
• Implement zero-trust, secrets management (HashiCorp Vault), and monitoring (ELK/Prometheus) for cross-border payments.
• Collaborate with engineering on secure API design, container security (Kubernetes/Docker), and threat hunting.

What We Are Looking For

• 5+ years in security/DevOps, with 2+ years in DevSecOps or Infosec engineering at fintechs/scale-ups.
• Expertise in cloud security (AWS/GCP), IaC (Terraform), and fintech regs (RBI UPI, FEMA, DPDP Act).
• Hands-on with security tools: GitHub Actions security, OWASP ZAP, Falco; scripting (Python/Go/Bash).
• Proven ownership of security programs; experience leading small teams/projects without formal management.
• Strong communication for cross-functional influence; bonus for GIFT City/cross-border payments experience.

What We Offer

• The ability for you to make an impact and lay a foundation for the upcoming fin-tech innovations.
  
• A multicultural and diverse team of colleagues from different states that speak in total of 6 Indian and global languages.
• Progressive and flexible work hours that match your personality and lifestyle.
• The best-in-class perks and benefits for the team. Check out our careers page for the same: https://decentro.tech/careers/https://decentro.tech/careers/

Backed by global investors such as Ycombinator & Rapyd, we're a contrarian and progressive culture of independent thinkers and systematic executors that are driven to build cool things that matter.
If this aligns with you, time to hop on!

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, disability status, or any other characteristic protected by law.