Senior Application Security EngineerPhoton • India
Senior Application Security Engineer
Photon • India
7 days ago
Job descriptionBachelor's degree in Computer Science, Information Security, or related professional experience. Have 3+ years of hands-on experience in application security, including securing cloud-based and containerized environments. Experience performing secure code reviews and interpreting SAST / SCA / DAST results. Strong experience with modern development workflows, including CI / CD pipelines, using Azure Pipelines and GitHub Actions. Working knowledge of the OWASP Top 10 for web applications and APIs and how to apply the standard to minimize security risk. In-depth understanding of vulnerabilities and secure coding practices. Hands-on experience with security tools like Snyk, Veracode, Burpsuite or similar. Familiarity with cloud platforms (AWS, Azure) and containerization (Docker, Kubernetes). Proficiency in programming languages like Python, Java, or C# is preferred. Have empathy, collaboration skills, and a learning mindset to work cross-functionally with engineers of all levels to build security into the product life cycle. Possess broad security knowledge to connect the dots across domains and identify holistic ways to lower the overall threat surface. Have the ability to distill complex security concepts into clear actions and drive consensus with minimum supervision. Demonstrated success in partnering with developers to integrate security.
Application Security Engineer (Senior Officer)
Reporting to the Global Head of Security, the Application Security Engineer plays a crucial role in leading our Application Security program, ensuring the highest level of security for our Engineering teams. The ideal candidate must have empathy for developers and intimately know the tools and workflows they use on a daily basis, while understanding the importance of communication, documentation, and taking accountability. The incumbent is an engineer who prioritizes addressing security challenges through technology and automation with a history of enabling developers with actionable security guidance. The candidate has experience with security code review, threat modeling or security architecture reviews, and can identify vulnerability paths explaining how they could be exploited while familiar with options for mitigation.
Responsibilities
- Shift left” security efforts to build security into the software development lifecycle :
- Conduct secure design reviews and threat modeling to identify and prioritize risks, attack surfaces, and vulnerabilities
- Deploy and operationalize static (SAST), dynamic (DAST), dependency (SCA) and secrets scanning
- Work with Platform DevOps team to build and maintain security automation tools to seamlessly embed inline security checks into CI / CD pipelines
- Partner with Platform DevOps to help design secure-by-default architectures and workflows
- Assist with application security code reviews of source code changes and advise developers on remediating vulnerabilities following secure coding practices
- Establish and track SLA governance to ensure security findings are identified, prioritized, and remediated.
- Maintain application asset inventory.
- Lead the Security Champions Program to build security-minded culture amongst developers and IT Operations teams.
- Act as a trusted advisor and partner for development and cross-functional project teams, providing actionable guidance to address security.
- Help with training on secure coding practices, empowering teams to proactively prevent vulnerabilities.
- Evaluate and implement security tools and automation solutions to enhance the security posture of applications and streamline security processes.
PROFILE
Create a job alert for this search
Senior Application Engineer • India
Related jobs
Greetings from “HCL Software” Is a Product Development Division of HCL Tech!!.HCL Software” : - Is a Product Development Division of HCL Tech : That operates its primary Software Business.At HCL Soft...Show more
)
Senior Security Engineer - Infrastructure Security
Poshmark • Chennai, Republic Of India, IN
Security team at Poshmark is responsible for securing our application platform, cloud infrastructure, and IT systems to protect Poshmark and its 60 million Community members.As a AWS and Infrastruc...Show more
Last updated: 30+ days ago • Promoted
Senior Application Security Engineer
Bahwan CyberTek • Chennai, Republic Of India, IN
Proficiency in Application Security, API, AI- Vulnerability Assessment / Penetration Testing, red teaming.Highly skilled and proficient in manual and automated testing using OWASP Top 10 for Web, API...Show more
Last updated: 7 days ago • Promoted
AppScan Product _Lead Security Expert _Remote Location
HCLSoftware • India, India
Remote
Last updated: 8 days ago • Promoted
Senior Application Security Manager
ARCON • Republic Of India, IN
We are seeking a highly experienced and strategic-minded Senior Manager of Application Security to lead our security initiatives.
The ideal candidate will be a seasoned leader with a deep understand...Show more
Last updated: 30+ days ago • Promoted
Senior Security Engineer
First American (India) • Republic Of India, IN
The Senior Security Engineer will be responsible for designing and implementing the Database Activity Monitoring (DAM) function to ensure the security, integrity, and compliance of enterprise data ...Show more
Last updated: 13 days ago • Promoted
Application Security Specialist
HCLSoftware • Republic Of India, IN
As a Presales / Solutions Consultant / Technical Advisor for AppScan, you will serve as the pre-sales technical expert supporting HCLSoftware’s application security portfolio in India, with a primary b...Show more
Last updated: 30+ days ago • Promoted
Sap Security
TalentBridge • India, India
Sap Security – Finance (SAP S / 4HANA Security).Months of Contract (With high possibility of Full Time).We are seeking an experienced SAP S / 4 Security Specialist with strong expertise in designing, b...Show more
Last updated: 9 days ago • Promoted
Senior 3D Secure Implementation specialist
Art Technology and Software • India, India
Client Implementation & Onboarding : .Lead end-to-end client 3DS implementations, including onboarding, integration, testing, and go-live for 3DS solutions.
Collaborate with cross-functional teams to ...Show more
Last updated: 25 days ago • Promoted
AKS Container Security Engineer
Xsell Resources • India, India
We are urgently seeking a Certified CKA / CKS Senior AKS Container Security Engineer for our healthcare client.Open to Immediate joiners only.
We are seeking a highly skilled AKS (Azure Kubernetes Ser...Show more
Last updated: 9 days ago • Promoted
Senior Security Engineer
CBTS • Chennai, Republic Of India, IN
Senior level roles as IT Security Architect, IT Security Engineer, IT Security Auditor, Cyber-Security Analyst, Cyber-Intelligence Analyst.
Certifications, Accreditations, Licenses.One or more of th...Show more
Last updated: 30+ days ago • Promoted
Lead Application Security Engineer
Amber • Pune, Republic Of India, IN
Job Description : SDE-III – Information Security (Amber).SDE-III – Information Security.Engineering / Information Security.
Amber is a global student accommodation platform helping students find and ...Show more
Last updated: 1 day ago • Promoted
Cyber Security Engineer
CareerUS Solutions • India, India
Cyber Security Engineer – Job Description.The Cyber Security Engineer is responsible for designing, implementing, and maintaining security systems to protect the organization’s computer networks, a...Show more
Last updated: 18 days ago • Promoted
Principal Technical Engineer - Pharmacovigilance Signal Detection Solutions
Qinecsa Solutions • India, India
Principal Technical Engineer - Pharmacovigilance Signal Detection Solutions.We are seeking a Principal Technical Engineer to design and develop pharmacovigilance signal detection solutions based on...Show more
Last updated: 5 days ago • Promoted
Lead Security Engineer
Arcana • India, India
As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between.
You'll design and enforce policies, automate controls, and harden...Show more
Last updated: 30+ days ago • Promoted
Senior Application Security Engineer
SpeedMart • India
Our client is a global IT services company that helps businesses with digital transformation with offices in India and the United States.
It helps businesses with digital transformation, provide IT ...Show more
Last updated: 1 day ago • Promoted
Application Security Engineer
TwinTechSolutions • Chennai, Republic Of India, IN
TwinTech Solutions is a leading Digital Defense Consulting and Services firm specializing in advanced cybersecurity solutions.
With over two decades of experience, our team holds prestigious accredi...Show more
Last updated: 5 hours ago • Promoted • New!
Security Operations Engineer
ITPeopleNetwork • India
We are looking for a junior to mid-level.Saviynt Identity Access Management (IAM / IGA).CyberArk Endpoint Privilege Manager (EPM).
The ideal candidate will assist in user access governance, email thre...Show more
Last updated: 11 days ago • Promoted
Senior Application Security Engineer
Sphera • India, India
Sphera is a leading global provider of enterprise software and services that enables companies to manage and optimize their environmental, health, safety and sustainability.Our mission is to create...Show more
Last updated: 18 days ago • Promoted