Talent.com
This job offer is not available in your country.
Qualizeal - Application Security Specialist

Qualizeal - Application Security Specialist

QUALIZEAL INDIA LLPHyderabad
20 days ago
Job description

Job Description :

Key Responsibilities :

1. Security Testing :

  • Conduct Static Application Security Testing (SAST) and Software Composition Analysis (SCA)
  • Perform Dynamic Application Security Testing (DAST) and Interactive Application Security Testing (IAST) for deeper analysis of vulnerabilities during runtime
  • Execute Mobile Application Security Testing and API Security Testing to safeguard against OWASP Security risks
  • Ensure applications are resilient to real-world attack vectors

2. Vulnerability Management and Threat Mitigation :

  • Identify, prioritize, and remediate vulnerabilities through Vulnerability Assessments and Penetration Testing (VAPT)
  • Identify and mitigate vulnerabilities aligned with the latest OWASP Top 10 risks, including Injection, Broken Access Control, and Insecure Design
  • Assess and remediate vulnerabilities in accordance with OWASP Application Security Verification Standard (ASVS)
  • Use Threat Modeling to predict, identify, and mitigate potential security threats early in the development lifecycle
  • Provide detailed report analysis and assess the actual business and technical impact of security vulnerabilities
  • Generate and analyze SAST reports, delivering actionable insights to technical and business stakeholders
  • Implement and maintain robust vulnerability management processes

    • 3. Cloud Security :

  • Secure cloud environments hosted on AWS and Azure, adhering to CIS Benchmarks and NIST Cybersecurity Framework standards
  • Ensure data privacy and protection compliance with GDPR and HIPAA in cloud implementations
  • Implement security controls and frameworks for cloud applications and infrastructure

    • 4. Compliance and Regulations :

  • Ensure application and infrastructure compliance with standards such as PCI DSS, HIPAA, and GDPR
  • Conduct regular assessments to align with SANS Top 25 Software Errors, NIST SP 800-53, and CIS Controls
  • Support the creation of secure applications that meet industry compliance and regulatory requirements

    • 5. DevSecOps Integration :

  • Embed security practices within the Secure Software Development Lifecycle (SDLC) by automating security checks and remediation
  • Collaborate with DevOps teams to integrate security tools and testing into the CI / CD pipelines using Jenkins and Azure DevOps
  • Automate security testing and monitoring to support agile development cycles

    • 6. Security Architecture and Best Practices :

  • Design secure application architectures to address OWASP Top 10 risks and API-specific threats
  • Advocate and enforce secure coding practices throughout the development teams
  • Integrate OWASP ASVS principles and Threat Modeling to enhance application security
  • Design and implement security architecture for web, mobile, and API applications

    • 7. Leadership and Training :

  • Lead security assessments and mentor junior team members on secure application practices
  • Conduct workshops and training sessions on OWASP Top 10, PCI DSS, Secure SDLC, and other key frameworks
  • Act as a subject matter expert (SME) in application security, fostering a culture of security awareness across the Skills and Qualifications :

    • 1. Technical Proficiency :

  • Legacy technologies : Java, .NET
  • Modern technologies : React, Node.js, Python, PHP, Ruby / Rails, Angular, etc
  • CMS experience with Magento-Adobe and Avocode

    • 2. Cloud Skills :

  • Expertise with AWS and Azure cloud platforms

    • 3. Security and Compliance Knowledge :

  • Strong understanding of OWASP Top 10, OWASP ASVS, PCI DSS, HIPAA, GDPR, CIS Benchmarks, and NIST Cybersecurity Frameworks
  • Familiarity with SANS Top 25 Software Errors and their remediation strategies
  • Knowledge of static compliance standards and security frameworks

    • 4. Security Testing Expertise :

  • Proficiency in SAST, SCA, DAST, IAST, and penetration testing techniques
  • Experience in Threat Modeling to proactively identify and mitigate risks
  • Strong knowledge of VAPT, mobile, and API security testing

    • 5. DevSecOps and SDLC Integration :

  • Expertise in implementing Secure Software Development Lifecycle (SDLC) practices
  • Proficiency in integrating security tools with CI / CD pipelines using Jenkins and Azure DevOps

    • Soft Skills :

  • Excellent communication skills to bridge the gap between technical and business teams
  • Strong leadership and collaboration skills
  • Ability to articulate technical issues to both technical and non-technical audiences

    • Preferred Certifications :

  • Certified Information Systems Security Professional (CISSP)
  • Certified Ethical Hacker (CEH)
  • GIAC Web Application Penetration Tester (GWAPT)
  • AWS Certified Security - Specialty
  • Microsoft Certified : Azure Security Engineer Associate

    • ref : hirist.tech)

    Create a job alert for this search

    Application Specialist • Hyderabad

    Related jobs
    Application Security Principal

    Application Security Principal

    EntainHyderabad, India
    This role works closely with the development teams to verify that our applications satisfy the defined security criteria supporting the organization on the secure design of our gaming platform and ...Show moreLast updated: 30+ days ago
    • Promoted
    Application Security Lead

    Application Security Lead

    Oak TitaniumHyderabad, IN
    Job Title : Application Security Lead .We are a rapidly growing cybersecurity firm delivering advanced security solutions to enterprises across the Middle East, Europe, and the United States.Our mis...Show moreLast updated: 18 days ago
    Application Security Specialist [Cyber Hygiene]

    Application Security Specialist [Cyber Hygiene]

    UBSINDIA
    At UBS, we embrace flexible ways of working when the role permits.We offer different working arrangements like part-time, job-sharing and hybrid (office and home) working.Our purpose-led culture an...Show moreLast updated: 30+ days ago
    Senior Application Security Consultant

    Senior Application Security Consultant

    Prudent Technologies and Consulting, Inc.Hyderabad, Telangana, India
    Prudent Technologies and Consulting is hiring for a fast-growing Cybersecurity team that supports a customer base including the world’s largest organizations. We have an immediate opening for a Seni...Show moreLast updated: 13 days ago
    Senior Application Security Engineer

    Senior Application Security Engineer

    Practical DevSecOpsHyderabad, India, India
    Remote
    Quick Apply
    Permanent(Full Time / Full-Time).We are seeking an Application Security Engineer to join our team and help maintain, enhance, and develop security training exercises for our renowned DevSecOps, API S...Show moreLast updated: 30+ days ago
    Field Application Specialist

    Field Application Specialist

    LifelancerHyderabad, Telangana, India
    Remote
    Quick Apply
    Celebrating over 40 years of innovation and quality, Molecular Devices is enabling scientists to unravel the complexity of biological systems. Through innovative analytical solutions for cell and pr...Show moreLast updated: 10 days ago
    Application Security Head

    Application Security Head

    ADANI GROUPINDIA
    Conduct regular security assessments of applications to identify and prioritize vulnerabilities.Perform penetration testing on web and mobile applications to simulate real-world cyber-attacks and u...Show moreLast updated: 30+ days ago
    Application Security Architect

    Application Security Architect

    Arrise Solutions (India) Pvt. LtdHyderabad, Telangana, India
    Gaming and Betting Industry, offering a multi-product portfolio that is innovative, regulated and mobile-focused.Driven by a persistence to craft immersive experiences and responsible thrills, our ...Show moreLast updated: 30+ days ago
    Security Engineer I (Application Security)

    Security Engineer I (Application Security)

    coinswitchINDIA
    PeepalCo is a house for brands serving India with tailored wealth-tech products, Making Money Equal for All.Founded by Ashish Singhal, Govind Soni, and Vimal Sagar Tiwari, PeepalCos products includ...Show moreLast updated: 30+ days ago
    Application Specialist

    Application Specialist

    IFFINDIA
    Are you passionate about solving customer problems, offering Technical solutions and building deeper business relationships that help drive growth for industry leading Consumer Products customers?....Show moreLast updated: 30+ days ago
    Application Specialist

    Application Specialist

    SandvikHyderabad, India
    With extensive investments in research and development we create unique innovations and set new productivity standards together with our customers. These include the world's major automotive, aerosp...Show moreLast updated: 18 days ago
    • Promoted
    Application Security Engineer

    Application Security Engineer

    TELUS DigitalHyderabad, IN
    We are a Digital Customer Experience organization, with a comprehensive coverage of IT Services from Traditional Services to Next Gen Digital Services. At TELUS Digital, we focus on lean, agile, hum...Show moreLast updated: 2 days ago
    • Promoted
    Senior Application Security Analyst

    Senior Application Security Analyst

    Global Infovision Private LimitedHyderabad, IN
    Job Title : Application Security Analyst.Skills : Threat Modeling, Secure SDL, Dev secops & (Comm skills).Show moreLast updated: 2 days ago
    Application Security Engineer

    Application Security Engineer

    Anicalls (Pty) LtdHyderabad, India
    Create and manage bug bounty programs.Evangelize software security best practices.Perform threat modeling, architecture design reviews, and detection capabilities. Develop and implement security too...Show moreLast updated: 30+ days ago
    Application Security Specialist

    Application Security Specialist

    Entain IndiaHyderabad, Telangana, India
    This role works closely with the development teams to verify that our applications satisfy the defined security criteria, supporting the organization on the secure design of our gaming platform and...Show moreLast updated: 11 days ago
    Senior Application Security Engineer

    Senior Application Security Engineer

    BackbaseHyderabad, Telangana, India
    No day at Backbase is the same, and even more so for our security engineers.We all know that security and banking need to go hand in hand and with hackers and tech evolving by the day, you’ll need ...Show moreLast updated: 13 days ago
    • Promoted
    Application Specialist

    Application Specialist

    EmersonHyderabad, Telangana, India
    If you are an Application Specialist professional, Emerson has an exciting role for you! We are looking for Application Specialist - Application & Customer Service to work with our Liquid Managemen...Show moreLast updated: 2 days ago
    Senior Application Security Engineer

    Senior Application Security Engineer

    Inspira EnterpriseHyderabad, Telangana, India
    Skills : SAST, DAST, SCA, IAST, Qualys, Black Duck, and JFrog ,Burp Suite, Nessus, WireShark, Black Duck, Sonarqube, Cloud Security, AWS Security, Azure Security,Encryption,IAM Security.We are seeki...Show moreLast updated: 13 days ago