TripleLift - Senior Application Security Engineer - NISTTripleLift • Pune
TripleLift - Senior Application Security Engineer - NIST
TripleLift • Pune
30+ days ago
Job description5+ years of experience in application security, secure software development, security engineering, or a similar role. Strong understanding of secure coding practices and ability to guide developers on remediation strategies. Experience with GitHub Advanced Security (GHAS), including Code Scanning (SAST), Secret Scanning, and Dependency Review. Proficiency in SAST, DAST, and SCA tools (e.g. , CodeQL, Burp Suite, OWASP ZAP, Snyk, Checkmarx, Veracode). Hands-on experience integrating security testing tools into CI / CD pipelines for automated security scanning. Knowledge of common application security vulnerabilities and mitigations (OWASP Top 10, CWE, business logic flaws, API security). Ability to perform threat modeling and assess security risks in applications and services. Experience conducting security code reviews across various programming languages (e.g. , Python, Java, TypeScript, Go). Understanding of security fundamentals with relation to various cybersecurity and compliance frameworks, particularly NIST CSF, but any of PCI, SOC2, HITRUST, ISO 27001 / 2, or similar. Understanding to securely manage cloud-native environments and the ability to deploy tools in these environments. Takes ownership of projects, works independently with minimal oversight, and delivers results in a fast-paced environment while balancing multiple priorities. Continuously learns, adapts, and values correctness, efficiency, and constructive feedback. Holds a Cybersecurity certification, e.g. , OSCP, GWAPT, CISSP, CISA, etc.
About TripleLift :
We're TripleLift, an advertising platform on a mission to elevate digital advertising through beautiful creative, quality publishers, actionable data and smart targeting.
Through over 1 trillion monthly ad transactions, we help publishers and platforms monetize their businesses.
Our technology is where the world's leading brands find audiences across online video, connected television, display and native ads.
Brand and enterprise customers choose us because of our innovative solutions, premium formats, and supportive experts dedicated to maximizing their performance.
As part of the Vista Equity Partners portfolio, we are NMSDC certified, qualify for diverse spending goals and are committed to economic inclusion.
The Role :
TripleLift is seeking a Senior Application Security Engineer to join our team full-time.
We are an established company in the advertising technology sector, trying to tackle some of the most challenging problems facing the industry.
You will be joining a rapidly growing and complex environment and will work as part of a small team that will be responsible for developing, evangelizing, and executing our security roadmap.
Youll help drive improvements in our security operations capability and support critical projects, enhancing our detect-and-respond capabilities.
Responsibilities :
- Play a critical role in building and maintaining a global security compliance program based on NIST CSF.
- Scale application security by developing automated security testing utilizing enterprise SAST, DAST, and code-review tools.
- Champion SDLC to promote secure application development and infrastructure deployment and facilitate secure coding remediation activities.
- Automate security testing in CI / CD pipelines to detect vulnerabilities early.
- Coordinate with stakeholders to develop and implement a vulnerability management program and to perform threat-hunting activities.
- Monitor and respond to application-layer security threats like API abuses, business logic flaws, and common web vulnerabilities.
- Collaborate with product and engineering teams to ensure security is a key consideration in software design and architecture.
- Enhance application security posture by working with cross-function teams to implement proper authentication, authorization, and data protection mechanisms.
- Enhance and facilitate security incident handling activities.
- Evangelize security best practices and provide education and awareness to company employees.
- Develop and implement secure coding guidelines and conduct secure development training for engineers.
- Evaluate and continuously improve the maturity of the security program through the deployment and management of various security tools and processes.
Desired Skills And Attributes :
(ref : hirist.tech)
Create a job alert for this search
Senior Application Engineer • Pune
Related jobs
Security Operations Engineer
ITPeopleNetwork • pune, maharashtra, in
We are looking for a junior to mid-level.Saviynt Identity Access Management (IAM / IGA).CyberArk Endpoint Privilege Manager (EPM).
The ideal candidate will assist in user access governance, email thre...Show more
Last updated: 2 days ago • Promoted
Lead Information Security Engineer - DLP
Talks About People • Pune
Description : Are you passionate about safeguarding data, building secure systems, and leading cybersecurity initiatives that protect enterprise-scale environments?&l...Show more
Last updated: 30+ days ago • Promoted
Application Security Engineer
Confidential • Pune
Join Strategy s IT Security group as an Application Security Engineer and play a crucial role in safeguarding Strategy s software applications while using modern security and AI tooling.In this pos...Show more
Last updated: 30+ days ago • Promoted
Senior Engineer - Information Security, AVP
Deutsche Bank • Pune, India
Senior Engineer - Information Security, AVP.Senior Engineer - Information Security (AVP).Your expertise will ensure the secure management, classification, and compliance of the bank's information a...Show more
Last updated: 14 days ago • Promoted
Senior Application Security Engineer
Confidential • Pune
We are looking for experienced .Strategys global hybrid network infrastructure, including .Strategy physical office locations worldwide .
You will play a critical role in designing, implementing, an...Show more
Last updated: 30+ days ago • Promoted
Senior Cloud Security Specialist
ACL Digital • Pune, Maharashtra, India
We are a leading organization in the field of information security, dedicated to protecting our clients' data and ensuring their digital safety.
Our mission is to provide innovative security solutio...Show more
Last updated: 18 days ago • Promoted
Security Engineer - NIST / SIEM
Rieter India Pvt Ltd • Pune
Your Main Tasks And Responsibilities : - Ensuring data security and security operation of on-premises and cloud IT Infrastructure and services -...Show more
Last updated: 4 days ago • Promoted
Smith+Nephew - Senior IT Security Engineer - SailPoint IQ
Smith+Nephew • Pune
What will you be doing? - Implementation and Configuration : Lead end-to-end implementation of SailPoint Identity IQ solutions, including application onboarding, work...Show more
Last updated: 17 days ago • Promoted
Lead IT Security Architect - Security Operations Center
MNR Solutions • Pune
Description : Designation : Lead IT Security Architect Experience : 10-15 Years Location : <...Show more
Last updated: 16 days ago • Promoted
SonicWall - Director of Engineering - Network Security
SONICWALL TECHNOLOGY SYSTEMS INDIA PRIVATE LIMITED • Pune
Role Overview : We are seeking a Director of Engineering to lead the end-to-end development of our next-generation Firewall and Network Security P...Show more
Last updated: 4 days ago • Promoted
Senior Application Security Consultant- Netskope
Jobworld Management Consultancy LLC • Pune, Maharashtra, India
Sr Security Consultant (L3 Profile) Pune.Position : Sr Security Consultant (L3 Profile).Forcepoint security products and other Web and Email security.
Extensive knowledge and good hands-on, Along wit...Show more
Last updated: 18 days ago • Promoted
Smith+Nephew - Senior IT Security Engineer
Smith+Nephew • Pune
Description : Life Unlimited.At Smith+Nephew, we design and manufacture technology that takes the limits off living.Join our dynamic team and embark on an exciting jo...Show more
Last updated: 30+ days ago • Promoted
Lead Security Engineer
interface.ai • Pune, IN
Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show more
Last updated: 30+ days ago • Promoted
Security Engineer
Sakon • Pune, Maharashtra, India
We are looking for a highly skilled and detail-oriented.Security Operations Center (SOC).As a Senior Engineer, you will be responsible for protecting the organization's IT infrastructure by monitor...Show more
Last updated: 13 days ago • Promoted
Senior Application Security Engineer
Sphera • Pune, IN
Sphera is a leading global provider of enterprise software and services that enables companies to manage and optimize their environmental, health, safety and sustainability.Our mission is to create...Show more
Last updated: 9 days ago • Promoted
Lead Security Engineer
Arcana • Pune, IN
As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between.
You'll design and enforce policies, automate controls, and harden...Show more
Last updated: 30+ days ago • Promoted
LotusFlare - Security Infrastructure Engineer - SAST / DAST
Lotusflare Technologies LLP • Pune
Description : LotusFlare is a provider of cloud-native SaaS products based in the heart of Silicon Valley.Founded by the team that helped Facebook reach over one bill...Show more
Last updated: 13 days ago • Promoted
Urbint - Application Security Engineer II
Urbint • Pune
Job Summary : We are seeking an Application Security Engineer-II to help embed security within Urbints software developm...Show more
Last updated: 30+ days ago • Promoted