Security Engineer Iii
CME GroupBengaluru, Republic Of India, IN1 day ago
Job description5+ years experience with industry standard penetration testing, or ability to demonstrate equivalent knowledge. Expertise performing blackbox / greybox / whitebox security assessments of applications (e.G., web applications, APIs, thick clients, web sockets) which use HTTP and / or proprietary protocols. Expert level skills with application security testing tools including : Burpsuite, sqlmap, nmap, etc. Experience performing manual reviews of application source code for security vulnerabilities written in various languages including : Java, Javascript, .Net (C#), etc. Experience with Cloud architectures, security principles and services. Google Cloud Platform (GCP) is preferred. Experience with automating security testing and / or other relevant activities to streamline service delivery. Preferred scripting languages : Python, bash, Powershell, etc. Experience with UNIX or Linux. A self-starter who is highly motivated. Proactively seek answers, ask for help when needed, and communicate solutions. Excellent Oral and Written communications skills. Ability to effectively communicate and interface with peers and stakeholders at all levels, including senior leadership. Experience in securing modern APIs, including knowledge of authentication / authorization standards like OAuth 2.0 and JWT, and understanding API-specific vulnerabilities. Experience in conducting formal threat modeling using frameworks like STRIDE to identify potential security flaws in the design phase. Experience with AI / ML security testing methodologies, including understanding of OWASP Top 10 for Large Language Models (LLMs) and common AI security vulnerabilities, and using AI to improve pentesting. Experience with prior development work. Experience with application reverse engineering and using tools such as : Java decompilers, .Net decompilers, IDAPro, etc. Experience with Capture The Flag (CTF) competitions and bug bounty programs. Relevant industry certifications such as OSCP, eWPTX, CCSP, GCP Professional Cloud Security Engineer, etc.
The Application Security Engineer leads efforts to enhance application security and the secure software development lifecycle. This individual is responsible for performing manual application security assessments (application pentests) and communicating security findings to the developers and QA teams. Additionally, the individual will provide application design support and security best practice guidance, in the form of consultations, to various development teams and business stakeholders. This individual will also actively promote security through engaging interactive workshops and exercises, such as internal Capture The Flag (CTF) events.
Principal Accountabilities
- Serve as the primary application security expert for development teams, offering security consulting and best practice guidance throughout the Software Development Life Cycle (SDLC).
- Perform manual security assessments at key points in the SDLC.
- Produce documentation (reports) and present findings of manual security assessments to various stakeholders, including senior leadership.
- Participate in security architecture reviews and threat modelling.
- Contribute to automation initiatives, including the integration of new security tools and processes (e.G., AI).
- Demonstrate a commitment to continuous education and staying current within the application security domain, promoting collaboration and knowledge sharing.
Skills Requirements
Nice To Have
Create a job alert for this search
Security Engineer • Bengaluru, Republic Of India, IN
Related jobs
![Engineer I - Security [T500-21027]](https://cdn-logos.talent.com/v1/logo/image?feedcode=clickcast-appcast-li-in-cpc&company_name=lululemon)
![Security Engineer [T500-20670]](https://cdn-logos.talent.com/v1/logo/image?feedcode=clickcast-appcast-li-in-cpc&company_name=Delta%20Air%20Lines)
)
- Promoted
Security (DevSecOps)and QA (Automation)
PioVation GmbHhosur, tamil nadu, in If you care about European-grade safety, quality, and compliance, read on.Senior Security Engineer (DevSecOps).Application & cloud security (threat modeling, secure SDLC).Kubernetes security (netwo...Show moreLast updated: 15 days ago
- Promoted
- New!
Network Security Engineer (Global Extranet Delivery)
TekWissen Indiahosur, tamil nadu, in TekWissen is a global workforce management provider throughout India and many other countries in the world.The below client is a global company with shared ideals and a deep sense of family.From ou...Show moreLast updated: 11 hours ago
- Promoted
Engineer I - Security [T500-21027]
lululemonBengaluru, Karnataka, India Setting the bar in technical fabrics and functional design, we create transformational products and experiences that support people in moving, growing, connecting, and being well.We owe our success...Show moreLast updated: 26 days ago
- Promoted
Lead Security Engineer
ArcanaBengaluru, IN As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between.
You'll design and enforce policies, automate controls, and harden...Show moreLast updated: 30+ days ago
- Promoted
Security Engineer [T500-20670]
Delta Air LinesBengaluru, Karnataka, India Delta Air Lines (NYSE : DAL) is the U.Powered by our employees around the world, Delta has for a decade led the airline industry in operational excellence while maintaining our reputation for award-...Show moreLast updated: 14 days ago
- Promoted
Cyber Security Engineer-I (Mandatory 2-4 years experience with Sailpoint and AWS IAM)
FICOBengaluru, Karnataka, India Hybrid mode (Mandatory 3days WFO).The Security Engineer is a highly visible and critical role, collaborating on complex cloud and corporate service edge protection technologies and oversight.With y...Show moreLast updated: 5 days ago
- Promoted
Security Engineer - Platform security II
ConfidentialBengaluru / Bangalore, India We are looking for a talented, dedicated Security Engineer who thrives on securing complex.Infrastructure Security & Controls : .
Implement and Maintain security hardening adherence to CIS benchmarks ...Show moreLast updated: 19 days ago
- Promoted
Security Engineer
InfogainBengaluru, Karnataka, India Title : Security Engineer (6+ Years).Use CrowdStrike reports to evaluate all security vulnerabilities on both Windows and Linux systems.
Analyze the requirements to remediate the security vulnerabili...Show moreLast updated: 29 days ago
- Promoted
- New!
OT Security Engineer
ADMBengaluru, India Under general supervision engineer, implement, and maintain effective methods to protect ADM (Archer Daniels Midland) systems and data.
Use and establish procedures and standards to consistently bui...Show moreLast updated: 6 hours ago
- Promoted
Engineer I
lululemon India Tech HubBengaluru, India Setting the bar in technical fabrics and functional design, we create transformational products and experiences that support people in moving, growing, connecting, and being well.We owe our success...Show moreLast updated: 30+ days ago
- Promoted
- New!
Cyber Security Engineer
Tata Consultancy Serviceshosur, tamil nadu, in We are currently planning to do a Walk-In Interview on 22nd November 2025 at TCS Chennai.Strong understanding of log management and SIEM concepts.
Proficiency in log source onboarding, parsing, and ...Show moreLast updated: 11 hours ago
- Promoted
Product Security Engineer II
FICOBengaluru, Karnataka, India Join our world-class team today and fulfill your career potential!.As a Product Security Engineer II in Cyber Security, you will be supporting security governance for a wide set of customer-facing ...Show moreLast updated: 30+ days ago
- Promoted
Security Engineer III
CME GroupBengaluru, Karnataka, India The Application Security Engineer leads efforts to enhance application security and the secure software development lifecycle.
This individual is responsible for performing manual application securi...Show moreLast updated: 1 day ago
- Promoted
Security Infrastructure Engineer
RingCentralBengaluru, Karnataka, India SecOps Infrastructure Engineer / Administrator.Administer and maintain security products (web application firewall, IDS, (h)IPS, EDR, phishing training, vulnerability management, SIEM, etc).Conduct r...Show moreLast updated: 15 days ago
- Promoted
Engineer I - Security T500-21027
lululemonBengaluru, Republic Of India, IN Setting the bar in technical fabrics and functional design, we create transformational products and experiences that support people in moving, growing, connecting, and being well.We owe our success...Show moreLast updated: 26 days ago
- Promoted
Lead Security Engineer
interface.aiBengaluru, IN Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show moreLast updated: 30+ days ago
- Promoted
- New!
Senior Security Engineer
First American (India)hosur, tamil nadu, in The Senior Security Engineer will be responsible for designing and implementing the Database Activity Monitoring (DAM) function to ensure the security, integrity, and compliance of enterprise data ...Show moreLast updated: 11 hours ago
- Promoted
Security Engineer III
ConfidentialBengaluru / Bangalore, India The Application Security Engineer leads efforts to enhance application security and the secure software development lifecycle.
This individual is responsible for performing manual application securi...Show moreLast updated: 19 days ago