Talent.com
No longer accepting applications
Security Engineer III

Security Engineer III

CME Grouppune, India
3 days ago
Job description

The Application Security Engineer leads efforts to enhance application security and the secure software development lifecycle. This individual is responsible for performing manual application security assessments (application pentests) and communicating security findings to the developers and QA teams. Additionally, the individual will provide application design support and security best practice guidance, in the form of consultations, to various development teams and business stakeholders. This individual will also actively promote security through engaging interactive workshops and exercises, such as internal Capture The Flag (CTF) events.

Principal Accountabilities

  • Serve as the primary application security expert for development teams, offering security consulting and best practice guidance throughout the Software Development Life Cycle (SDLC).
  • Perform manual security assessments at key points in the SDLC.
  • Produce documentation (reports) and present findings of manual security assessments to various stakeholders, including senior leadership.
  • Participate in security architecture reviews and threat modelling.
  • Contribute to automation initiatives, including the integration of new security tools and processes (e.g., AI).
  • Demonstrate a commitment to continuous education and staying current within the application security domain, promoting collaboration and knowledge sharing.

Skills Requirements

  • 5+ years experience with industry standard penetration testing, or ability to demonstrate equivalent knowledge.
  • Expertise performing blackbox / greybox / whitebox security assessments of applications (e.g., web applications, APIs, thick clients, web sockets) which use HTTP and / or proprietary protocols.
  • Expert level skills with application security testing tools including : Burpsuite, sqlmap, nmap, etc.
  • Experience performing manual reviews of application source code for security vulnerabilities written in various languages including : Java, Javascript, .Net (C#), etc.
  • Experience with Cloud architectures, security principles and services. Google Cloud Platform (GCP) is preferred.
  • Experience with automating security testing and / or other relevant activities to streamline service delivery. Preferred scripting languages : Python, bash, Powershell, etc.
  • Experience with UNIX or Linux.
  • A self-starter who is highly motivated. Proactively seek answers, ask for help when needed, and communicate solutions.
  • Excellent Oral and Written communications skills. Ability to effectively communicate and interface with peers and stakeholders at all levels, including senior leadership.

    • Nice To Have

  • Experience in securing modern APIs, including knowledge of authentication / authorization standards like OAuth 2.0 and JWT, and understanding API-specific vulnerabilities.
  • Experience in conducting formal threat modeling using frameworks like STRIDE to identify potential security flaws in the design phase.
  • Experience with AI / ML security testing methodologies, including understanding of OWASP Top 10 for Large Language Models (LLMs) and common AI security vulnerabilities, and using AI to improve pentesting.
  • Experience with prior development work.
  • Experience with application reverse engineering and using tools such as : Java decompilers, .Net decompilers, IDAPro, etc.
  • Experience with Capture The Flag (CTF) competitions and bug bounty programs.
  • Relevant industry certifications such as OSCP, eWPTX, CCSP, GCP Professional Cloud Security Engineer, etc.
    • Create a job alert for this search

    Security Engineer • pune, India

    Related jobs
    • Promoted
    • New!
    Security Operations Engineer

    Security Operations Engineer

    ITPeopleNetworkpune, maharashtra, in
    We are looking for a junior to mid-level.Saviynt Identity Access Management (IAM / IGA).CyberArk Endpoint Privilege Manager (EPM). The ideal candidate will assist in user access governance, email thre...Show moreLast updated: 16 hours ago
    • Promoted
    DevSecOps / AppSecOps Staff Engineer

    DevSecOps / AppSecOps Staff Engineer

    First American (India)pune, maharashtra, in
    Our people-first culture empowers bold thinkers and passionate technologists to solve real-world challenges through scalable architecture and innovative design. If you're driven by impact, thrive in...Show moreLast updated: 30+ days ago
    • Promoted
    Cyber Security Engineer

    Cyber Security Engineer

    CareerUS SolutionsPune, IN
    Cyber Security Engineer – Job Description.The Cyber Security Engineer is responsible for designing, implementing, and maintaining security systems to protect the organization’s computer networks, a...Show moreLast updated: 8 days ago
    • Promoted
    IT Security Engineer

    IT Security Engineer

    RedCompass LabsPune, Maharashtra, India
    RedCompass Labs enables good payments and helps stop the bad.We are experts in ISO20022-based payments, instant payments, cross-border payments, payments interoperability and financial crime.We use...Show moreLast updated: 15 days ago
    • Promoted
    Cyber Security Engineer with Splunk

    Cyber Security Engineer with Splunk

    IntraEdgePune, IN
    This role will lead the development and implementation of intelligent security solutions using SIEM, SOAR, and machine learning to enhance detection, response, and operational efficiency across the...Show moreLast updated: 30+ days ago
    • Promoted
    Rapid7 - Senior Security Engineer - iAM

    Rapid7 - Senior Security Engineer - iAM

    Rapid7Pune
    Description : Obsessed with security? Are you looking for a new opportunity to channel your security expertise into building, integrating, and automating security c...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Engineer - Information Security, AVP

    Senior Engineer - Information Security, AVP

    Deutsche BankPune, India
    Senior Engineer - Information Security, AVP.Senior Engineer - Information Security (AVP).Your expertise will ensure the secure management, classification, and compliance of the bank's information a...Show moreLast updated: 13 days ago
    • Promoted
    Security Engineer - NIST / SIEM

    Security Engineer - NIST / SIEM

    Rieter India Pvt LtdPune
    Your Main Tasks And Responsibilities : - Ensuring data security and security operation of on-premises and cloud IT Infrastructure and services -...Show moreLast updated: 3 days ago
    • Promoted
    DevSecOps Engineer

    DevSecOps Engineer

    QualysPune, Maharashtra, India
    Prevent issues from becoming incidents.Qualys products are built to the highest levels of security and trust.This is a senior role for an engineer with a passion for security, supporting developers...Show moreLast updated: 30+ days ago
    • Promoted
    Information Security Engineer - Penetration Testing

    Information Security Engineer - Penetration Testing

    hashone CareersPune
    Description : Security Specialists are instrumental in fortifying the security framework that underpins the software delivery processes of our clients. These experts thrive in collaborative setting...Show moreLast updated: 1 day ago
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    interface.aiPune, IN
    Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show moreLast updated: 30+ days ago
    • Promoted
    DevSecOps Engineer - Cloud Security (BFSI / Security Architecture)

    DevSecOps Engineer - Cloud Security (BFSI / Security Architecture)

    PeopleGenePune, Maharashtra, India
    About the role : We are seeking a hands-on Security & Compliance Lead to own and execute end-to-end security audits and compliance initiatives across applications, infrastructure, and organizational...Show moreLast updated: 4 days ago
    • Promoted
    Security Engineer

    Security Engineer

    SakonPune, Maharashtra, India
    We are looking for a highly skilled and detail-oriented.Security Operations Center (SOC).As a Senior Engineer, you will be responsible for protecting the organization's IT infrastructure by monitor...Show moreLast updated: 11 days ago
    • Promoted
    Cloud Security, & Compliance Engineer (FinTech / Architecture)

    Cloud Security, & Compliance Engineer (FinTech / Architecture)

    PeopleGenePune, Maharashtra, India
    About the role : We are seeking a hands-on Security & Compliance Lead to own and execute end-to-end security audits and compliance initiatives across applications, infrastructure, and organizationa...Show moreLast updated: 5 days ago
    • Promoted
    Azure Security Engineer - Encryption & Key Management

    Azure Security Engineer - Encryption & Key Management

    Digihelic Solutions Private LimitedPune
    Description : Job Title : Azure Security Engineer Encryption & Key Management.Job Summary : We are seeking an experienced Azure Se...Show moreLast updated: 10 days ago
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    ArcanaPune, IN
    As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between. You'll design and enforce policies, automate controls, and harden...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Application Security Engineer

    Senior Application Security Engineer

    SpheraPune, IN
    Sphera is a leading global provider of enterprise software and services that enables companies to manage and optimize their environmental, health, safety and sustainability.Our mission is to create...Show moreLast updated: 8 days ago
    • Promoted
    LotusFlare - Security Infrastructure Engineer - SAST / DAST

    LotusFlare - Security Infrastructure Engineer - SAST / DAST

    Lotusflare Technologies LLPPune
    Description : LotusFlare is a provider of cloud-native SaaS products based in the heart of Silicon Valley.Founded by the team that helped Facebook reach over one bill...Show moreLast updated: 12 days ago