Home
About Us: 21K School, promoted by Bangalore-based Mindreflex Technologies Private Limited, is Asia's largest online school, offering virtual education to over 7,500 students across 72 countries. At 21K School, we're not just building an online school; we're building the future of education. We believe every student deserves a personalised, world-class learning experience, regardless of location. We're leveraging cutting edge technology, AI, and data-driven insights to realise this vision.

Role Overview

We are looking for a Cybersecurity Engineer to strengthen 21K School’s overall security posture across applications, infrastructure, data, and systems. This role involves hands-on execution across application security, cloud and infrastructure security, data protection, compliance readiness, and security audits. The candidate will work closely with engineering, product, and operations teams to ensure secure design and implementation across all systems.

Key Responsibilities

1. Application & API Security

a. Perform Vulnerability Assessment and Penetration Testing (VAPT) on web applications and APIs
b.Identify and remediate OWASP Top 10 vulnerabilities
c.Ensure adherence to secure coding practices
d. Secure third-party integrations and APIs

2. Infrastructure & Cloud Security
a.Implement and manage cloud security (AWS preferred)
b.IAM policies, access control, encryption
c.Network security (VPC, security groups, firewalls)
d.Configure and manage WAF, IDS/IPS, and firewall rules
e.Ensure secure configurations for servers and databases

3. Data & Information Security
a.Define and enforce data protection policies and access controls
b.Implement encryption mechanisms (data at rest and in transit)
c.Manage data classification and handling of sensitive/PII data

4. Compliance & Security Audits
a.Support and drive compliance initiatives such as:
o SOC 2 o DPDP (India Data Protection Act) o GDPR
b.Prepare and maintain security policies, controls, and audit documentation 
c.Coordinate with internal and external auditors

5. System & Device Security
a.Implement endpoint/device security policies
b.Manage user access control and permissions
c. Ensure secure configurations across organizational systems

6. Security Monitoring & Incident Response
a.Monitor security logs and alerts using SIEM tools (Splunk/ELK or similar)
b. Detect and respond to security incidents and threats
c.Maintain incident response plans and reports








Required Skills

Cloud security (AWS preferred) SIEM/log monitoring tools Authentication, authorization, and encryption API and integration security Application, Network, and Information Security concepts VAPT tools Microservices architecture
View all job openings