Join Us in Revolutionizing the Construction Industry

Parspec is transforming how $5 trillion in building construction products are sold annually around the world by digitizing and organizing the industry’s product data. By making this data more accessible and useful, our digital platform enables designers and builders to quickly identify the right products for their projects and helps the supply chain to generate new leads and close deals faster. These benefits are enabled by proprietary AI and workflow automation technology.

Founded in 2021, Parspec has raised over $11M in seed financing from leading deep tech and construction industry investors to achieve its ambitious mission, including Innovation Endeavors (founded by former Google CEO Eric Schmidt). We invite you to be at the forefront of innovation for one of the oldest and largest industries in the world!

Leadership

Parspec is helmed by technologists and construction supply chain veterans with a common passion to digitally transform our industry.

FOUNDERS

• Forest Flager (Co-Founder & CEO) - Former Director of Software at Katerra and Stanford University faculty member; Stanford BS, PhD. MIT MEng. Harvard MDes.

• Pratyush Havelia (Co-Founder & CTO) - Construction-tech engineering leader for 10+ years; Stanford MS & MEng, IIT-R B.Tech.

India Leadership:

• Abhijit Mitra (Lead Frontend Engineer) - 10+ years of experience building highly scalable systems, monorepo, micro-frontend architecture, distributed systems; ex-Tekion; Gauhati University B.Tech.

• Sharique Arshi (Lead Software Architect) - 12+ years of experience in software engineering with distributed systems, architecture design, microservices; IIT-G B.Tech. 

• Saurabh Khemka (AI Lead) - 8+ years of industrial experience in large scale model building and deployment, PhD in Neuroscience - Switzerland, IIT-R B.Tech.

• Anjali Sinha (Product Manager) - a seasoned product leader with 7+ years of experience in project & product management, operations strategy, and analytics; National University of Singapore - M.Tech

• Sameer Kulkarni - 7+ years of experience across a number of HR and Operations roles including learning and development, organizational development and project management; SPPU - Masters in Industrial and Organizational Psychology

ROLE SUMMARY 

As an early member of the engineering team, you will play a key role in designing & developing the core cyber-security components of Parspec’s systems and also maintaining & upholding the culture of brilliance in our tightly-knit organization. You will:

• Design and implement cyber-security measures, policies, guidelines and processes for all applications, services and cloud-infrastructure components

• Collaborate with the engineering  team to ensure secure DevOps & software development practices are followed including SAST, DAST, SCA, etc.

• Lead the efforts for building the culture of secure coding practices by holding brown bag lunch sessions on OWASP Top 10 Web, OWASP Top 10 AI, etc. 

• Build the internal penetration testing function from the ground up including sizing, scoping, and partnering with the engineering team for remediation

• Lead the security incident response by acting as incident commander and rallying other team members to contain and resolve the incident

• Assist Parspec’s compliance efforts (SOC2, etc.) and external engagements for cybersecurity projects
  

This is an exceptional opportunity to bring an entire industry to the forefront of the digital age, and we are excited to work together with like-minded and ambitious leaders like you to realize this potential.

WHO YOU ARE

You are passionate about working in a fast-paced, dynamic, friendly team and are looking for a challenging and rewarding opportunity to build a top-tier product. You agree with the following:

• You have an entrepreneurial spirit and are excited by the opportunity to shape the development of a young business

• You are passionate and intrigued about state-of-the-art advancements in cybersecurity and strive to implement the same

• You are eager to keep yourself up-to-date with the latest developments, tools, processes, certifications and frameworks in cybersecurity

• You are detail-oriented and meticulous, but also understand the importance of rapid iteration in an agile development environment

• You are knowledgeable about how digitization & automation has impacted other industries and are excited to find new applications for technology in the construction industry

• You are not afraid to get your hands dirty and believe that no task is beneath you when it comes to delivering a world-class product

• You love to learn and are especially good at picking up new concepts quickly

• You are self-driven and take pride in your work

• You are willing to occasionally make yourself available outside regular IST working hours to accommodate collaboration with a globally distributed team
  

WHAT YOU WILL DO

• Design, implement, and manage security measures to protect our web-app services, cloud infrastructure (AWS, GCP, Azure) components and any integrations with external APIs

• Develop and maintain policies and processes to incorporate early detection of security issues and adherence to best practices in cybersecurity in product development 

• Conduct regular manual security assessments and vulnerability scans of web applications, APIs, and cloud environments.

• Implement and manage security tools and technologies, including firewalls, VPN, intrusion detection/prevention systems, automated vulnerability scanners, and endpoint protection solutions.

• Monitor and analyze security events and incidents, providing timely response and mitigation strategies.

• Collaborate with development and DevOps teams to integrate security best practices into the software development lifecycle (SDLC).

• Ensure compliance with relevant security frameworks and regulations (e.g., ISO 27001, NIST, CIS, etc.).

• Manage SOC2 compliance audit

• Conduct security training and awareness programs for employees.

• Stay current with emerging security threats, vulnerabilities, and mitigation techniques.

• Lead and mentor teams working on infrastructure components related to security practices.

• Uphold our culture of engineering excellence

• Collaborate with the leadership team in related research and development efforts
  

WHAT YOU CAN EXPECT 

As an integral part of building Parspec from the ground up, you will share in our success. We offer: 

• Competitive salary and benefits

• Company equity

• Flexible hours

• Hybrid location preference

• Opportunity to grow with a rapidly scaling company addressing a large market ripe for digital transformation
  

REQUIRED QUALIFICATIONS

• Bachelor’s or Master’s degree in Computer Science, Information Technology (or related fields) and excellent programming, critical thinking, and analytical skills

• Minimum of 4-5 years of experience in cyber security, with a focus on web applications, cloud infrastructure, and API integrations

• Proven experience with securing at least one of AWS & GCP environments

• Good understanding of security frameworks and standards such as ISO 27001, NIST, GDPR, OWASP, and CIS Controls

• Strong understanding of web application security (e.g., OWASP Top 10) and secure coding practices

• Proven experience with finding and reporting vulnerabilities in web-applications (either via bounty programs or part of internal org teams)

• Experience with security tools and technologies, including but not limited to:

  • Web Application Firewalls (WAF)

  • VPN’s

  • Intrusion Detection/Prevention Systems (IDS/IPS)

  • Security Information and Event Management (SIEM) systems

  • Endpoint Protection and Response (EPR) solutions

  • Vulnerability Management tools

• Proficiency in scripting (e.g., Python, Bash, PowerShell) and reviewing code PR’s

• Experience with industry-standard best practices for OAuth / SSO / MFA

• At least one of several relevant certifications such as CISSP, CEH, CISM, or equivalent

• Experience with identity and access management (IAM) and multi-factor authentication (MFA) solutions.

• Working knowledge of zero-trust architecture and principles

• Strong analytical and problem-solving skills

• Excellent communication and interpersonal skills

PREFERRED QUALIFICATIONS

• Master’s degree in Computer Science, Information Technology (or related fields)

• Working knowledge of best practices to secure AWS & GCP environments

• Experience with Django, React and similar web-app frameworks

• Experience with designing and developing web-application architectures

• Experience with building service components using AWS RDS, ECS, OpenSearch, S3, EC2 and other commonly used technologies

• Experience setting up DevSecOps practices and CI/CD pipeline security

• Experience setting up and managing Bug Bounty programs

• Experience as a Penetration Tester for web-applications and cloud infrastructure

• Familiarity with cyber law applicable to web-applications and cloud infrastructure
  

THE PARSPEC ETHOS

At Parspec, we lead from every seat. Our team members are self-starters that embrace ambiguity, think big, and bring their own uncompromising standards of excellence. We embrace diversity with a belief that different backgrounds, ideas, and skillsets result in better outcomes. Parspec does not discriminate in employment based on race, color, creed, national origin, ancestry, sex, marital status, disability, religious or political affiliation, age, sexual orientation, or gender identity. 

Parspec encourages people of all backgrounds to apply, including people of color, immigrants, refugees, women, LGBTQIA, people with disabilities, veterans and those with diverse life experiences.