Talent.com
▷ Immediate Start : Application Security Engineer

▷ Immediate Start : Application Security Engineer

FoodsmartDelhi, Delhi, India
1 day ago
Job description

About us :

Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians. Our platform is designed to foster healthier food choices, drive lasting behavior change, and deliver long-term health outcomes. Through our highly personalized, digital platform, we guide our 2.2 million members—including those in employer-sponsored health plans, regional and national Medicaid managed care organizations, Medicare Advantage plans, and commercial insurers—on a tailored journey to eating well while saving time and money.

Foodsmart seamlessly integrates dietary assessments and nutrition counseling with online food ordering and cost-effective meal planning for the entire family, optimizing ingredients both at home and on the go. We partner with national and regional retailers across the U.S., many of whom accept SNAP / EBT, making healthier food more accessible. Additionally, we assist members with SNAP enrollment and management, providing tangible access to nutritious food.In 2024, Foodsmart secured a $200 million investment from TPG’s Rise Fund, which supports entrepreneurs dedicated to achieving the United Nations’ Sustainable Development Goals. This investment will help us expand our reach, particularly to low-income workers who are disproportionately affected by diet-related diseases.

At Foodsmart, our mission is to make nutritious food accessible and affordable for everyone, regardless of economic status. We are committed to a set of core values that shape our culture and work environment :

⚖️ Measured : We make data-driven, truth-seeking decisions.

Impactful : We are fueled by achieving our mission and vision.

Collaborative : We help each other be better and create a positive environment.

Hungry : We maintain a healthy growth mindset, seeking to overcome challenges with courage.

Joyful : We take joy in each other, our work, and the privilege of doing this work.

Whether you're a dietitian, a commercial leader, or a technologist, working at Foodsmart means being part of a team that is passionate, supportive, and driven by a shared purpose. Join us in transforming the way people access and enjoy healthy food.

About the role :

We are seeking an Application Security Engineer who will work at the intersection of security, DevOps, and development to ensure security is embedded throughout our SDLC. This role requires deep technical expertise in secure code review, static and dynamic application security testing (SAST / DAST), and infrastructure governance, especially in the segregation of environments, separation of duties, and branch protection in source control systems.

You will :

Code & Application Security

  • Conduct manual and automated code reviews to identify security vulnerabilities (e.g., XSS, SQLi, logic flaws).
  • Define and implement SAST and DAST pipelines using tools such as SNYK, Checkmarx, Fortify, OWASP ZAP, or Burp Suite.
  • Collaborate with development teams to remediate vulnerabilities and educate on secure coding standards (e.g., OWASP Top 10).

DevSecOps & CI / CD Pipeline Security

  • Integrate security controls into CI / CD pipelines using tools like GitHub Actions, Jenkins, and GitLab CI.
  • Define and enforce branch protection rules, code signing, and commit validation policies (e.g., mandatory code reviews, signed commits).
  • Work closely with DevOps to ensure security-as-code is implemented across build, test, and deployment stages.

    • Infrastructure & Environment Segregation

  • Ensure proper segregation between development, staging, and production environments, following least privilege principles.
  • Collaborate with infra and cloud teams to enforce network and access segregation (e.g., VPC segmentation, IAM policies).

    • Governance & Policy Enforcement

  • Define and monitor separation of duties policies between developers, testers, and deployers.
  • Create security baselines and compliance checks (e.g., CIS Benchmarks, SOC 2 / ISO 27001 readiness).
  • Set up auditing and alerting for anomalous activities in source control and deployment platforms.

    • Tooling & Automation

  • Deploy and maintain security tools (e.g., GitGuardian, Aqua, Prisma Cloud) to detect hard coded secrets, policy violations, and misconfigurations.
  • Automate remediation workflows where possible (e.g., auto-patching vulnerable dependencies).

    • You have :

  • 7-10 years in Security Architecture, AppSec, or a combined development and security engineering role.
  • Strong hands-on experience in secure coding, application security testing, and source code analysis.
  • Solid knowledge of CI / CD pipelines, version control (especially GitHub / GitLab), and branch control strategies.
  • Familiarity with cloud platforms (AWS, Azure, GCP) and security practices for each.
  • In-depth understanding of network security, access controls, and zero trust architecture.
  • Practical knowledge of regulatory or compliance frameworks (e.g., ISO 27001, SOC 2, NIST).

    • Preferred Qualifications

  • Experience working with Infrastructure as Code (IaC) tools (e.g., Terraform, CloudFormation) with embedded security checks.
  • Familiarity with container security (Docker, Kubernetes, image scanning).
  • Certifications : OSCP, CSSLP, CEH, GSEC, or AWS Security Specialty.
  • Contributions to open-source security tools or projects is a plus.

    • Key KPIs / Metrics of Success

  • Time-to-remediate for identified vulnerabilities.
  • Percentage of pipelines with integrated SAST / DAST.
  • Number of policy violations prevented via branch rules and access controls.
  • Coverage of secure coding training among developers.
  • Sign on bonus offered for immediate joiners
    • Create a job alert for this search

    Application Security Engineer • Delhi, Delhi, India

    Related jobs
    • Promoted
    Security (DevSecOps)and QA (Automation)

    Security (DevSecOps)and QA (Automation)

    PioVation GmbHnew delhi, delhi, in
    If you care about European-grade safety, quality, and compliance, read on.Senior Security Engineer (DevSecOps).Application & cloud security (threat modeling, secure SDLC).Kubernetes security (netwo...Show moreLast updated: 6 days ago
    • Promoted
    • New!
    Senior Application Security Manager

    Senior Application Security Manager

    ARCONDelhi, India
    We are seeking a highly experienced and strategic-minded Senior Manager of Application Security to lead our security initiatives. The ideal candidate will be a seasoned leader with a deep understand...Show moreLast updated: 5 hours ago
    • Promoted
    • New!
    Senior Security Engineer – Cloud, AI & Application Security

    Senior Security Engineer – Cloud, AI & Application Security

    Symosis SecurityDelhi, India
    Symosis Security is a fast-growing cybersecurity and technology firm helping global organizations strengthen their cloud, application, and AI security posture. We combine deep technical expertise wi...Show moreLast updated: 20 hours ago
    • Promoted
    Senior Technical Lead(Application / Mobile Application Security)

    Senior Technical Lead(Application / Mobile Application Security)

    ConfidentialNoida
    Conduct application security testing, including manual code walkthroughs and using Burp Suite.Prepare detailed testing reports with CVSS scoring and recommended remediations.Guide developers to fix...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Applications Security Manager

    Senior Applications Security Manager

    DEUTSCHE TELEKOM DIGITAL LABS PRIVATE LIMITEDGurugram
    We are seeking a highly skilled and experienced Senior Manager Application Security to lead our application security strategy, governance, and execution. This role will oversee secure software devel...Show moreLast updated: 30+ days ago
    • Promoted
    Sr. SOC Engineer (Red Teaming & Web Application Security Specialist)

    Sr. SOC Engineer (Red Teaming & Web Application Security Specialist)

    Hitachi Digital ServicesNoida, Uttar Pradesh, India
    This job is with Hitachi Digital Services, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly...Show moreLast updated: 15 days ago
    • Promoted
    Sr. SOC Engineer (Red Teaming & Web Application Security Specialist)

    Sr. SOC Engineer (Red Teaming & Web Application Security Specialist)

    Hitachi DigitalNoida, Uttar Pradesh, India
    This job is with Hitachi Digital, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.Our Comp...Show moreLast updated: 15 days ago
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    interface.aiMeerut, IN
    Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Application Security Engineer

    Senior Application Security Engineer

    ConfidentialGurugram, Gurgaon / Gurugram, India
    You are an experienced, hands-on Application Security Engineer who's passionate about building secure products, automating security workflows, and influencing development teams to embed security in...Show moreLast updated: 10 days ago
    • Promoted
    Staff Application Security Engineer - Vulnerability Management

    Staff Application Security Engineer - Vulnerability Management

    questhiringDelhi, IN
    Role : Staff Application Security Engineer Location : New Delhi, India As a Staff Application Security Engineer , you will shape how security integrates in...Show moreLast updated: 30+ days ago
    • Promoted
    DevSecOps / AppSecOps Staff Engineer

    DevSecOps / AppSecOps Staff Engineer

    First American (India)new delhi, delhi, in
    Our people-first culture empowers bold thinkers and passionate technologists to solve real-world challenges through scalable architecture and innovative design. If you're driven by impact, thrive in...Show moreLast updated: 30+ days ago
    • Promoted
    Megthink - Security Engineer

    Megthink - Security Engineer

    MegThink Solutions Private LimitedDelhi, IN
    Remote
    Description : Job Title : Security Engineer Location : Remote Experience : Up to 7 years Employment Ty...Show moreLast updated: 9 days ago
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    ArcanaNoida, Republic Of India, IN
    As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between. You'll design and enforce policies, automate controls, and harden...Show moreLast updated: 21 days ago
    • Promoted
    • New!
    Security Engineer

    Security Engineer

    Insight GlobalNew Delhi, Delhi, India
    REMOTE : INDIA - MUST CROSS OVER TO U.S EST HOURS FIXED FULLTIME ENGAGEMENT : STARTING AT 6 MONTHS (FULL TIME BENEFITS) Required Skills & Experience • 5+ years in detection engineering, threat hunti...Show moreLast updated: 10 hours ago
    • Promoted
    Application Security Engineer

    Application Security Engineer

    FoodsmartGhaziabad, IN
    Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians.Our platform is designed to foster healthier food choices, drive lasting behavior c...Show moreLast updated: 26 days ago
    • Promoted
    Information Security Engineer

    Information Security Engineer

    SodexoNew Delhi, Delhi, India
    Operational security automation is the process of automating some or all aspects of SOC or VOC operations.Replacing manual workflows with automated ones. A fundamental building block of automation i...Show moreLast updated: 27 days ago
    • Promoted
    Security Engineer

    Security Engineer

    NexionProGurgaon
    Key Responsibilities : - Perform vulnerability assessments across cloud platforms and workloads using Wiz, Tenable, and SonarQube. Classify vulnerabilities by severity...Show moreLast updated: 30+ days ago
    • Promoted
    Product Security Engineer 5

    Product Security Engineer 5

    ConfidentialNoida, India
    Changing the world through digital experiences is what Adobe's all about.We give everyone—from emerging artists to global brands—everything they need to design and deliver exceptional digital exper...Show moreLast updated: 30+ days ago