Talent.com
This job offer is not available in your country.
Application Security Engineer

Application Security Engineer

FoodsmartChennai, IN
2 days ago
Job description

About us :

Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians. Our platform is designed to foster healthier food choices, drive lasting behavior change, and deliver long-term health outcomes. Through our highly personalized, digital platform, we guide our 2.2 million members—including those in employer-sponsored health plans, regional and national Medicaid managed care organizations, Medicare Advantage plans, and commercial insurers—on a tailored journey to eating well while saving time and money.

Foodsmart seamlessly integrates dietary assessments and nutrition counseling with online food ordering and cost-effective meal planning for the entire family, optimizing ingredients both at home and on the go. We partner with national and regional retailers across the U.S., many of whom accept SNAP / EBT, making healthier food more accessible. Additionally, we assist members with SNAP enrollment and management, providing tangible access to nutritious food.In 2024, Foodsmart secured a $200 million investment from TPG’s Rise Fund, which supports entrepreneurs dedicated to achieving the United Nations’ Sustainable Development Goals. This investment will help us expand our reach, particularly to low-income workers who are disproportionately affected by diet-related diseases.

At Foodsmart, our mission is to make nutritious food accessible and affordable for everyone, regardless of economic status. We are committed to a set of core values that shape our culture and work environment :

⚖️ Measured : We make data-driven, truth-seeking decisions.

💥 Impactful : We are fueled by achieving our mission and vision.

🙏 Collaborative : We help each other be better and create a positive environment.

📈 Hungry : We maintain a healthy growth mindset, seeking to overcome challenges with courage.

😊 Joyful : We take joy in each other, our work, and the privilege of doing this work.

Whether you're a dietitian, a commercial leader, or a technologist, working at Foodsmart means being part of a team that is passionate, supportive, and driven by a shared purpose. Join us in transforming the way people access and enjoy healthy food.

About the role :

We are seeking an Application Security Engineer who will work at the intersection of security, DevOps, and development to ensure security is embedded throughout our SDLC. This role requires deep technical expertise in secure code review, static and dynamic application security testing (SAST / DAST), and infrastructure governance, especially in the segregation of environments, separation of duties, and branch protection in source control systems.

You will :

Code & Application Security

  • Conduct manual and automated code reviews to identify security vulnerabilities (e.g., XSS, SQLi, logic flaws).
  • Define and implement SAST and DAST pipelines using tools such as SNYK, Checkmarx, Fortify, OWASP ZAP, or Burp Suite.
  • Collaborate with development teams to remediate vulnerabilities and educate on secure coding standards (e.g., OWASP Top 10).

DevSecOps & CI / CD Pipeline Security

  • Integrate security controls into CI / CD pipelines using tools like GitHub Actions, Jenkins, and GitLab CI.
  • Define and enforce branch protection rules, code signing, and commit validation policies (e.g., mandatory code reviews, signed commits).
  • Work closely with DevOps to ensure security-as-code is implemented across build, test, and deployment stages.
  • Infrastructure & Environment Segregation

  • Ensure proper segregation between development, staging, and production environments, following least privilege principles.
  • Collaborate with infra and cloud teams to enforce network and access segregation (e.g., VPC segmentation, IAM policies).
  • Governance & Policy Enforcement

  • Define and monitor separation of duties policies between developers, testers, and deployers.
  • Create security baselines and compliance checks (e.g., CIS Benchmarks, SOC 2 / ISO 27001 readiness).
  • Set up auditing and alerting for anomalous activities in source control and deployment platforms.
  • Tooling & Automation

  • Deploy and maintain security tools (e.g., GitGuardian, Aqua, Prisma Cloud) to detect hard coded secrets, policy violations, and misconfigurations.
  • Automate remediation workflows where possible (e.g., auto-patching vulnerable dependencies).
  • You have :

  • 7-10 years in Security Architecture, AppSec, or a combined development and security engineering role.
  • Strong hands-on experience in secure coding, application security testing, and source code analysis.
  • Solid knowledge of CI / CD pipelines, version control (especially GitHub / GitLab), and branch control strategies.
  • Familiarity with cloud platforms (AWS, Azure, GCP) and security practices for each.
  • In-depth understanding of network security, access controls, and zero trust architecture.
  • Practical knowledge of regulatory or compliance frameworks (e.g., ISO 27001, SOC 2, NIST).
  • Preferred Qualifications

  • Experience working with Infrastructure as Code (IaC) tools (e.g., Terraform, CloudFormation) with embedded security checks.
  • Familiarity with container security (Docker, Kubernetes, image scanning).
  • Certifications : OSCP, CSSLP, CEH, GSEC, or AWS Security Specialty.
  • Contributions to open-source security tools or projects is a plus.
  • Key KPIs / Metrics of Success

  • Time-to-remediate for identified vulnerabilities.
  • Percentage of pipelines with integrated SAST / DAST.
  • Number of policy violations prevented via branch rules and access controls.
  • Coverage of secure coding training among developers.
  • Create a job alert for this search

    Application Engineer • Chennai, IN

    Related jobs
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    ArcanaChennai, IN
    As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between. You'll design and enforce policies, automate controls, and harden...Show moreLast updated: 30+ days ago
    • Promoted
    Azure Security Engineer – Remediation

    Azure Security Engineer – Remediation

    HCLTechChennai, Tamil Nadu, India
    Job Title : Azure Security Engineer – Remediation Liaison.We are seeking a highly skilled.This role requires both hands-on technical expertise in Microsoft Azure and the ability to collaborate effec...Show moreLast updated: 5 days ago
    • Promoted
    Senior Security Engineer, SOC

    Senior Security Engineer, SOC

    PoshmarkChennai, Tamil Nadu, India
    Monitor and analyze security event logs and alerts to detect potential incidents, and lead investigations for containment, eradication, and recovery. Lead security incident investigation, containmen...Show moreLast updated: 23 days ago
    • Promoted
    CyberArk Emplementation Engineer

    CyberArk Emplementation Engineer

    ITC InfotechChennai, Tamil Nadu, India
    CyberArk Emplementation Engineer.Good experience with Privileged account administration of various Windows and UNIX accounts. Integrating various platforms with different LDAP providers, Splunk.Wind...Show moreLast updated: 4 days ago
    • Promoted
    Endpoint Security Engineer

    Endpoint Security Engineer

    Sampoorna Consultants Pvt. LtdChennai
    Key Responsibilities : - Implement and maintain endpoint security solutions such as EDR, antivirus, encryption, and application control tools.Monitor, analyze, and re...Show moreLast updated: 27 days ago
    • Promoted
    Server Security Engineer

    Server Security Engineer

    Bahwan CyberTekChennai, Tamil Nadu, India
    Hiring Update : Server Security Engineer, 8+ Years Experience.We are looking for Server Security Engineer who has hands on experience working in CyberArk and CrowdStrile Falcon.Hybrid (4 days WFO & ...Show moreLast updated: 20 days ago
    • Promoted
    Cyber Security Engineer

    Cyber Security Engineer

    Paramount Computer SystemsChennai, IN
    Identity Governance and Administration (IGA).The role involves designing, implementing, and supporting enterprise-grade IGA solutions to ensure secure, efficient, and compliant identity lifecycle m...Show moreLast updated: 15 days ago
    • Promoted
    Security Engineer (Detection and Response)

    Security Engineer (Detection and Response)

    FoodsmartChennai, IN
    Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians.Our platform is designed to foster healthier food choices, drive lasting behavior c...Show moreLast updated: 2 days ago
    • Promoted
    Applications Security Engineer

    Applications Security Engineer

    Cyanous Software Private LimitedChennai
    Role Summary : The application security program is designed to ensure that any software developed or acquired meets stringent standards while enabling rapid i...Show moreLast updated: 30+ days ago
    • Promoted
    Application Security Engineer

    Application Security Engineer

    ConfidentialChennai
    Conduct DAST (manual and automated) for web, API, and thick client applications.Perform manual code reviews and mobile application VAPT (static and dynamic). Execute infrastructure VA and configurat...Show moreLast updated: 25 days ago
    Application Security

    Application Security

    Vitasta Consulting Pvt LtdChennai, TN, Tamil Nadu, IN
    Verdana,Geneva,sans-serif;"> Show moreLast updated: 30+ days ago
    • Promoted
    Senior Security Engineer - CyberArk PAM

    Senior Security Engineer - CyberArk PAM

    Cynosure Corporate SolutionsChennai
    Role Purpose : We are seeking a Senior Security Engineer with a strong foundation in security incident response, infrastructure security, and expe...Show moreLast updated: 30+ days ago
    • Promoted
    Logitech - Principal Product Security Engineer - Threat Modeling

    Logitech - Principal Product Security Engineer - Threat Modeling

    LogitechChennai
    About the job : Logitech is the Sweet Spot for people who want their actions to have a positive global impact while having the flexibility to do it in their own way.R...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Security Engineer - Infrastructure Security

    Senior Security Engineer - Infrastructure Security

    PoshmarkChennai, Tamil Nadu, India
    Security team at Poshmark is responsible for securing our application platform, cloud infrastructure, and IT systems to protect Poshmark and its 60 million Community members.As a AWS and Infrastruc...Show moreLast updated: 2 days ago
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    interface.aichennai, tamil nadu, in
    Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show moreLast updated: 30+ days ago
    • Promoted
    Cyber Security Engineer

    Cyber Security Engineer

    Nexoria Techworks Inc.chennai, tamil nadu, in
    Job Description : Cybersecurity Engineer.Cybersecurity, Information Security, Threat Management.Your core responsibilities will include : . Implement security measures to proactively identify and mitig...Show moreLast updated: 5 days ago
    • Promoted
    Application Security Engineer - OWASP

    Application Security Engineer - OWASP

    RAPLChennai
    About the job : Exp : 3-6 Yrs Location : Bangalore / Chennai Notice...Show moreLast updated: 30+ days ago
    • Promoted
    Application Engineer (Principal) - Enterprise Risk

    Application Engineer (Principal) - Enterprise Risk

    Flyers SoftChennai, Tamil Nadu, India
    Experience : Must have at least.Excellent knowledge of programming languages like.Strong knowledge and experience in.Cloud environment (AWS & Azure). Experience with model risk governance or validati...Show moreLast updated: 30+ days ago