This job offer is not available in your country.
Urgent : Senior Application Security Engineer
NopalCyberHyderabad, Telangana, India3 hours ago
Job description8–12 years of experience in Application Security with direct, hands-on expertise in SAST, DAST, SCA, and VAPT. Strong knowledge of secure software development practices and common vulnerability classes (OWASP Top 10, CWE, ASVS, language-specific security pitfalls). Hands-on experience integrating security testing into CI / CD pipelines (Jenkins, Azure DevOps, GitLab CI, GitHub Actions). Practical expertise with SAST tools (SonarQube, Fortify, Checkmarx, Veracode) and SCA tools (Snyk, White Source, Nexus Lifecycle, Black Duck). Working knowledge of security architecture frameworks (e.g., SABSA) and threat modeling methodologies (e.g., STRIDE, attack trees) to support risk-based application security design and assessment. Ability to validate and triage false positives, priorities vulnerabilities, and provide actionable remediation guidance to developers. Ability to develop and present detailed application security assessment reports, code-level remediation plans, and secure coding guidance aligned with industry standards and compliance requirements. Strong communication skills to convey technical findings to technical and executive stakeholders. Bachelor’s degree in engineering, Computer Science, or related discipline. CEH Certification (Mandatory) plus one or more advanced certifications : EC-Council Certified Application Security Engineer (CASE – Java / .NET) GIAC Secure Software Programmer (GSSP – Java / .NET) Programming language-neutral certifications like CSSLP. Self-starter and quick learner requiring minimal ramp-up Excellent written, oral, and interpersonal communication skills Highly self-motivated, self-directed, and attentive to detail Ability to effectively prioritize and execute tasks in a high-pressure environment
About NopalCyber
NopalCyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant. Through Managed Extended Detection and Response (MXDR), Attack Surface Management (ASM), Breach and Attack Simulation (BAS), and Advisory Services, we fortify our clients’ cybersecurity across both offense and defence.
Our AI-driven Nopal360° platform, NopalGo mobile app, and proprietary Cyber Intelligence Quotient (CIQ) enable organizations to quantify, track, and visualize their cybersecurity posture in real time. We democratize enterprise-grade security operations for organizations of all sizes by lowering the barrier to entry while raising the bar for security and service.
Location : Nopal Cyber, Hyderabad (Work from Office, 5 Days a Week)
Employment Type : Full-time
Key Responsibilities
- Run Static Application Security Testing (SAST) using tools such as SonarQube, Fortify, Checkmarx, Veracode, etc., to identify source-code vulnerabilities across multiple languages and frameworks (Java, .NET, Python, JavaScript, etc.).
- Configure and execute SAST scans, fine-tune rules, manage false positives, and integrate scans into CI / CD pipelines.
- Perform Dynamic Application Security Testing (DAST) (authenticated and unauthenticated) on web apps, APIs, and services; analyse results and validate findings.
- Combine SAST and DAST outputs to provide holistic vulnerability coverage and support secure SDLC initiatives.
- Plan and conduct Vulnerability Assessment and Penetration Testing (VAPT) for web applications, APIs, and backend services to identify business logic, configuration, and runtime flaws.
- Map VAPT findings back to code-level issues discovered in SAST to close the loop with development teams.
- Work with developers and DevSecOps engineers to remediate vulnerabilities and embed security testing into build pipelines.
- Use Software Composition Analysis (SCA) tools such as Snyk, White Source, Nexus Lifecycle, Black Duck to identify open-source and third-party risks (vulnerabilities, license issues, outdated components).
- Generate, validate, and manage Software Bills of Materials (SBOMs) in formats like CycloneDX and SPDX to strengthen software supply chain security.
- Monitor transitive dependencies and unverified sources to prevent supply-chain compromise.
- Apply secure coding principles aligned with OWASP Top 10, CWE, and language-specific security pitfalls.
Required Skills & Experience
Educational Qualifications
Personal attributes
Create a job alert for this search
Application Engineer • Hyderabad, Telangana, India
Related jobs
Permanent(Full Time / Full-Time).We are seeking an Application Security Engineer to join our team and help maintain, enhance, and develop security training exercises for our renowned DevSecOps, API S...Show moreLast updated: 30+ days ago
We are seeking a skilled SecOps Engineer to join our Enterprise Security team.In this role, you will be responsible for maintaining and enhancing our security posture through incident response, sec...Show moreLast updated: 2 days ago
)
- Promoted
Lead Security Engineer
interface.aiHyderabad, IN Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show moreLast updated: 28 days ago
Senior Application Security Engineer
Practical DevSecOpsHyderabad, India, IndiaRemote
Quick Apply
- Promoted
NetEnrich - Security Implementation Engineer - SIEM Solutions
NetEnrichHyderabad About company : Netenrich boosts the effectiveness of organizations security and digital operations so they can avoid disruption and manag...Show moreLast updated: 14 days ago
- Promoted
- New!
Senior Information Security Engineer (Apply in 3 Minutes)
QualiZealHyderabad, Telangana, India Job Overview : We are looking for an experienced Security Information Engineer to strengthen our cloud and infrastructure security posture.
The ideal candidate will be certified in Microsoft Azure S...Show moreLast updated: 3 hours ago
- Promoted
Senior Application Security Consultant - Penetration Testing
PRUDENT GLOBALTECH SOLUTIONS PRIVATE LIMITEDHyderabad Job Description : Prudent Technologies and Consulting is hiring for a fast-growing Cybersecurity team that supports a customer base including the worlds largest organ...Show moreLast updated: 28 days ago
- Promoted
Electrical Maintenance Engineer
MRFSangareddy, Telangana, India Experience in ALLEN BRADLEY / SIEMENS PLC.Operation maintenance and troubleshooting of Utilities like Boilers, Chillers, DG's etc.
Checking all types of Motor drives (AC & DC) and transformers.Troub...Show moreLast updated: 30+ days ago
- Promoted
Security Engineer (Detection and Response)
FoodsmartHyderabad, Telangana, India Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians.Our platform is designed to foster healthier food choices, drive lasting behavior c...Show moreLast updated: 28 days ago
- Promoted
Lead Security Engineer
ArcanaHyderabad, IN As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between.
You'll design and enforce policies, automate controls, and harden...Show moreLast updated: 30+ days ago
- Promoted
Application Security Engineer
FoodsmartHyderabad, Telangana, India Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians.Our platform is designed to foster healthier food choices, drive lasting behavior c...Show moreLast updated: 28 days ago
- Promoted
Senior Engineer - Maintenance - Solar Module
Premier Energies LimitedRangareddy, Telangana, India Founded in 1995, Premier Energies is a leading solar cell and module manufacturer based in Telangana, India.We operate advanced facilities with 2 GW cell and 5.
GW module capacity, and are expanding...Show moreLast updated: 5 days ago
SecOps Analyst - Enterprise Security
ATLAS CONSOLIDATED PTE. LTD.Hyderabad, Telangana, INQuick Apply
- Promoted
Senior Application Security Engineer
QualiZealHyderabad, Telangana, India Conduct Static Application Security Testing (SAST) and Software Composition Analysis (SCA).Perform Dynamic Application Security Testing (DAST) and Interactive Application Security Testing (IAST) fo...Show moreLast updated: 30+ days ago
- Promoted
Principal Application Security Consultant - Vulnerability Assessment
PRUDENT GLOBALTECH SOLUTIONS PRIVATE LIMITEDHyderabad Job Description : Prudent Technologies and Consulting is seeking an experienced Principal Application Security Engineer to lead our rapidly expandi...Show moreLast updated: 28 days ago
- Promoted
Senior Infrastructure Security Engineer I
Anzy Global.Hyderabad Job Description : Function : IT Operations and Support / DevOps / Cloud, IT Security Vulnerability Security < / p&...Show moreLast updated: 30+ days ago
- Promoted
Senior Application Security Engineer
NopalCyberHyderabad, Telangana, India NopalCyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant.
Through Managed Extended Detection and Response (MXDR), Attack Su...Show moreLast updated: 9 days ago
- Promoted
DevSecOps / AppSecOps Staff Engineer
First American (India)secunderabad, telangana, in Our people-first culture empowers bold thinkers and passionate technologists to solve real-world challenges through scalable architecture and innovative design.
If you're driven by impact, thrive in...Show moreLast updated: 10 days ago
- Promoted
Appen - Staff Engineer - Application Security
AppenHyderabad About Appen : Appen is a leader in AI enablement for critical tasks such as model improvement, supervision, and evaluation.To do this we l...Show moreLast updated: 7 days ago
- Promoted
Senior Information Security Engineer
QualiZealHyderabad, Telangana, India We are looking for an experienced Security Information Engineer to strengthen our cloud and infrastructure security posture.
The ideal candidate will be certified in Microsoft Azure Security (AZ-500...Show moreLast updated: 15 days ago