Talent.com
This job offer is not available in your country.
Application Security Risk Architect - Vulnerability Management

Application Security Risk Architect - Vulnerability Management

SMARTWORK IT SERVICESBangalore
25 days ago
Job description

Position : Application Security Risk Architect

Experience : 7- 9 Years

Location : Bangalore, India

Job Summary :

We're looking for a skilled and proactive Application Security Risk Architect with 7- 9 years of experience to join our team. The ideal candidate will have a primary focus on threat modeling and security architecture reviews.

You will lead the effort to identify and mitigate security risks across our application portfolio, from design to deployment. This role requires a strong understanding of secure application design, expertise with threat modeling frameworks, and the ability to embed security into the core of our development processes.

Key Responsibilities :

Threat Modeling & Security Architecture Reviews :

  • Lead and conduct threat modeling sessions using industry-standard frameworks like STRIDE, PASTA, and LINDDUN.
  • Perform security architecture reviews for new and existing applications, including web, mobile, APIs, and cloud-native services.
  • Analyze data flow diagrams, trust boundaries, and third-party integrations to identify potential attack vectors.
  • Collaborate with solution architects to integrate secure design principles and zero-trust models into all architectures.

Application Security & Vulnerability Management :

  • Conduct secure design and code assessments for critical applications.
  • Support the SAST (Static Application Security Testing) program, using tools like Checkmarx, Fortify, or SonarQube, and prioritize findings based on design flaws.
  • Partner with development teams to guide the remediation of vulnerabilities with secure design patterns.

    • Governance, Awareness & Developer Support :

  • Define and document secure design guidelines and best practices for development teams.
  • Provide training and mentorship on threat modeling and secure architecture principles to foster a security-aware culture.
  • Create security playbooks, checklists, and documentation to standardize the architecture security review process.

    • Required Skills & Qualifications :

    Core Experience :

  • 7- 9 years of experience in Application Security or Secure Software Architecture.
  • At least 5 years of experience with a primary focus on Threat Modeling and Architecture Security Reviews.

    • Technical Proficiency :

  • Strong knowledge of secure application design principles : authentication, authorization, data protection, and API security.
  • Experience with threat modeling tools like the Microsoft Threat Modeling Tool or manual frameworks like STRIDE.
  • Hands-on experience with SAST tools (Checkmarx, Fortify, SonarQube) and secure coding standards (OWASP, CWE).
  • Familiarity with cloud security principles across AWS, Azure, and GCP.

    • Preferred Qualifications :

  • Experience integrating secure design practices into Agile and DevOps CI / CD pipelines.
  • Knowledge of compliance frameworks like OWASP ASVS, NIST 800-53, ISO 27001, and PCI DSS.
  • Relevant security certifications, such as CSSLP, SABSA, CISSP, or AWS Security Specialty.
  • Exposure to DAST (Dynamic Application Security Testing), SCA (Software Composition Analysis), container security, or penetration testing methodologies.

    • Additional Information :

  • Candidates must be available for a Face-to-Face Interview at the IBM location as required.
  • Day 1 Onsite Reporting is mandatory post the date of joining.

    • (ref : hirist.tech)

    Create a job alert for this search

    Application Architect • Bangalore

    Related jobs
    • Promoted
    Lead Application Security Engineer

    Lead Application Security Engineer

    InMobi AdvertisingBengaluru, Karnataka, India
    InMobi is the leading provider of content, monetization, and marketing technologies that fuel growth for industries around the world. Our end-to-end advertising software platform, connected content,...Show moreLast updated: 30+ days ago
    • Promoted
    Application Security Architect

    Application Security Architect

    Intraedge Technologies Ltd.Bangalore
    Job Description : AppSec Architect (AWS) Experience : 7+ Years Location : Bangalore / Gurugram / Noida&l...Show moreLast updated: 19 days ago
    • Promoted
    ResMed - Associate Security Architect

    ResMed - Associate Security Architect

    RESMED TECHNOLOGY INDIA PRIVATE LIMITEDBangalore
    Job Description : talk about the Team : Resmed's Enterprise Security Service team plays a pivotal role in enabling secure innovation...Show moreLast updated: 30+ days ago
    • Promoted
    Application Security Engineer

    Application Security Engineer

    Edge Executive SearchBangalore
    Our client is a global leader in the aviation sector, driving a digital-first transformation powered by cloud technologies, data innovation, and machine learning. With a bold vision to redefine how ...Show moreLast updated: 24 days ago
    • Promoted
    Cyber Security Architect

    Cyber Security Architect

    Utthungabangalore, karnataka, in
    The Cyber Security Architect will be responsible for designing, implementing, and maintaining security frameworks for Industrial Automation and Control Systems (IACS). This role ensures compliance w...Show moreLast updated: 4 days ago
    • Promoted
    Oracle Cloud Security and Risk Management (RMC) Consultant

    Oracle Cloud Security and Risk Management (RMC) Consultant

    Atomhosur, tamil nadu, in
    Job Title : Oracle Cloud Security and Risk Management (RMC) Consultant.We are seeking an experienced Oracle Cloud Security and Risk Management (RMC) Consultant to join our team.The ideal candidate w...Show moreLast updated: 25 days ago
    • Promoted
    Application Security Analyst - Vulnerability Management

    Application Security Analyst - Vulnerability Management

    Sampoorna Consultants Pvt. LtdBangalore
    Key Responsibilities : - Support vulnerability assessments using SAST, DAST, and SCA tools.Collaborate with DevOps, Vulnerability Management teams,...Show moreLast updated: 30+ days ago
    • Promoted
    DynPro - Security Architect - Firewall Technologies

    DynPro - Security Architect - Firewall Technologies

    DynproindiaBangalore
    Mandatory skills : - Cyber Security - Network security ...Show moreLast updated: 30+ days ago
    • Promoted
    Vulnerability Management Analyst - Cloud Security

    Vulnerability Management Analyst - Cloud Security

    CollaberaBangalore
    Role : Vulnerability Management Analyst.Collabera is looking for a passionate Vulnerability Management Analyst for one of its largest banking customer in their security defects & COE team.This ...Show moreLast updated: 25 days ago
    • Promoted
    Senior Cloud Security Architect

    Senior Cloud Security Architect

    CloudThatBengaluru, Karnataka, India
    Enterprise-level role responsible for defining security governance frameworks and driving strategic security initiatives across cloud ecosystems. Conduct security Well-Architected Reviews.Define IAM...Show moreLast updated: 26 days ago
    • Promoted
    Cloud Security Architect

    Cloud Security Architect

    CloudThatBengaluru, Karnataka, India
    Strategic role ensuring secure cloud design by reviewing infrastructure, tools, and practices across full cloud lifecycle. Own end-to-end security in project life cycle.Perform security design revie...Show moreLast updated: 25 days ago
    • Promoted
    Application Security Architect - AWS

    Application Security Architect - AWS

    NPG ConsultantsBangalore
    Lead secure-by-design initiatives for AWS-hosted applications.Combine AppSec expertise with hands-on development and cloud-native architecture to enable scalable security design patterns, proactive...Show moreLast updated: 30+ days ago
    • Promoted
    Cyber Security Solutions Architect

    Cyber Security Solutions Architect

    Black BoxBengaluru, Karnataka, India
    Cybalt (a Black Box company) provides comprehensive, innovative, and full-lifecycle cybersecurity services such as Consulting, Professional Services, and 24 / 7 Managed Security Services.We believe ‘...Show moreLast updated: 30+ days ago
    • Promoted
    Security Technology Lifecycle Analyst

    Security Technology Lifecycle Analyst

    HR PLACEMENT CONSULTANTS (HRPC)Bangalore Rural, Karnataka, India
    Position - Analyst - Security Technology Lifecycle Analyst.Job Type - Full-time (Third party payroll •).The Security Technology Lifecycle Analyst plays a critical role in supporting the Corporate Se...Show moreLast updated: 20 days ago
    • Promoted
    Cyber Security Senior Architect

    Cyber Security Senior Architect

    Jaguar Land Rover IndiaBengaluru, India
    Knowledge, Skills and Experience.Proven track record of leading a development team on the architectural / technical side delivering software. Minimum of a Bachelor degree in a technological engineer...Show moreLast updated: 5 days ago
    • Promoted
    Oracle Cloud ERP Senior Analyst (Security and Risk Management)

    Oracle Cloud ERP Senior Analyst (Security and Risk Management)

    Sikich IndiaBengaluru, IN
    Oracle Cloud ERP Senior Analyst.Security and Risk Management) with 5+ years of related experience in Oracle Cloud or any other Tier 1 ERP application. Accounting, Advisory, and Technical professiona...Show moreLast updated: 30+ days ago
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    Arcanahosur, tamil nadu, in
    As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between. You'll design and enforce policies, automate controls, and harden...Show moreLast updated: 30+ days ago
    • Promoted
    Application Security Architect

    Application Security Architect

    ETENICO RECRUITSBangalore
    Job Summary : We are seeking a skilled and experienced Application Security Architect who has good experience in applica...Show moreLast updated: 30+ days ago