Application Security Engineer
1 week ago
Position: Application Security Engineer
Location: Hyderabad
Experience: 6-10 Years
Skills: Application Security, Source code review, Coding (Any oops)
Notice Period: Upto 30 Days
JOB DESCRIPTION:
RESPONSIBILITIES:
Establish security best processes and practices for our mobile, on-premises and cloud-based platforms.
Provide expert knowledge and guidance to the product teams about security vulnerabilities and remediation controls.
Support and consult with product and development teams in the area of application security, including threat modeling and Application Security reviews.
Implement, continuously develop, and maintain secure Software Security Development Lifecycle processes and software maturity model.
Perform threat modeling, secure design, and source code review.
Conduct security assessments, security testing and validation of vulnerability scan results.
Assist teams in reproducing, triaging, and addressing application security vulnerabilities.
Incorporate security tools/tasks to automate product development and deployment.
Develop, implement, and automate defensive controls, creating and tuning
tools and rules to detect and address malicious activity. Responsible for
integration of security controls into SDLC.
Establish supply chain security process and ensure 3rd party software meet
the standards.
Facilitate injection, integration, and compliance for Static Application Security
Testing (SAST), Container Security Scanning & Open-Source Security
Analysis during development phase.
Facilitate injection, integration, and compliance for Dynamic Application Security Testing (DAST)
Contribute to triaging, addressing security issues and tracking remediation.
Own and manage Secure SDLC tooling.
Develop and customize security tools used by security teams and developers.
Work closely with development teams to build security directly into their SDLCs.
Provide remediation guidance to programmers and management.
Support bug bounty program
Support the preparation of security releases
Mentor and train development teams on secure coding standards and techniques. Develop Secure Coding Program.
Constantly innovate at the pace of the adversary using latest techniques.
GENERAL KNOWLEDGE, SKILLS & ABILITIES:
In-depth knowledge of web and mobile security vulnerabilities, attack vectors and mitigation techniques
Experience with multiple programming languages (Java, JavaScript, Go, Python, Ruby, Objective-C, C#, PHP) with hands on level coding experience
with at least one scripting and one objected oriented programming language.
Fluent with security testing with SAST, SCA, DAST, IAST, Fuzz and penetration testing tools
Understanding of application security standards such as OWASP ASVS/Top 10 and CWE 25
Ability to discover and patch SQLi, XSS, CSRF, SSRF, authentication and authorization flaws, and other web-based security vulnerabilities (OWASP Top 10 and beyond).
Knowledge of common authentication technologies including OAuth, SAML, CAs, OTP/TOTP.
Knowledge of DevSecOps to maintain security in CI/CD pipeline.
Solid experience with security tools like Semgrep, CheckMarx, VeraCode, BurpSuite, Snyk, Nessus
Familiar with tools like Git, Jenkins, CircleCI, Maven, Ant, Gradle, Nexus, SonarQube, Artifactory, Chef, Splunk
Experience writing custom rules for static analysis tools.
Experience with API Security, IaC, Containerization, RASP, IAST
Experience with micro services, container deployment and service orchestration
Strong knowledge of cryptography, API security, and secret management
Ability to clearly and effectively communicate concerns and issues to the
management and engineers.
Experience with Cloud (AWS, Azure, GCP) Security
Experience writing tools to automate tasks and integrate systems using
scripting languages like Go, Python and REST APIs.
Experience in delivering and educating development groups in Secure Coding
Expertise with common vulnerabilities and attack vectors.
Experience integrating security tools into developer pipelines.
DevOps experience managing deployment and configuration.
GENERAL SKILLS INCLUDE:
Strong critical thinking and analytical skills
Ability to approach problem solving in a constructive and collaborative way
that does not require absolute security.
The ability to communicate complicated technical issues and risks to
programmers, network engineers and managers.
Strong leadership, project, and team-building skills
Exceptional communication skills with diverse audiences; the ability to be an
application security subject matter expert who can explain relevant topics to
general audiences.
EDUCATIONAL REQUIREMENTS:
· Bachelor’s degree in computer science, Information Systems, or equivalent
combination of education and experience
· Certifications in the field of Information Security (at least one of the following:
CISSP, CEH, GIAC, CWAPT, GWAPT, GWEB)
-
Application Security Engineer
4 weeks ago
Hyderabad, Telangana, India Alignity Solutions Full timeJob DescriptionWe are seeking a highly skilled Application Security Engineer to join our team at Alignity Solutions. As a key member of our DevSecOps team, you will be responsible for ensuring the security and integrity of our applications.Key Responsibilities:Secure Development Practices: Collaborate with development teams to implement secure development...
-
Application Security Engineer
6 months ago
Hyderabad, India Micron Full timeOur vision is to transform how the world uses information to enrich life for all. Micron Technology is a world leader in innovating memory and storage solutions that accelerate the transformation of information into intelligence, inspiring the world to learn, communicate and advance faster than ever. JR56230 Application Security Engineer (Evergreen) ...
-
Application security engineer
6 days ago
Hyderabad, India HuntingCube Recruitment Solutions Full timePosition: Application Security Engineer Location: Hyderabad Experience: 6-10 Years Skills: Application Security, Source code review, Coding (Any oops) Notice Period: Upto 30 Days JOB DESCRIPTION: RESPONSIBILITIES: Establish security best processes and practices for our mobile, on-premises and cloud-based platforms. Provide expert...
-
Security Applications Engineer
4 weeks ago
Hyderabad, Telangana, India Silicon Labs Full timeWe are Silicon Labs, a leader in secure, intelligent wireless technology. Our integrated platform makes us the ideal partner for building advanced industrial, commercial, home, and life applications.What does the Security Applications team do?ResponsibilitiesYou have the opportunity to join a small expert team that helps IoT product developers design secure...
-
Application security engineer
6 days ago
Hyderabad, India HuntingCube Recruitment Solutions Full timeEXPERIENCE REQUIRED: · A minimum of 7+ years of experience. RESPONSIBILITIES: Establish security best processes and practices for our mobile, on-premises and cloud-based platforms. Provide expert knowledge and guidance to the product teams about security vulnerabilities and remediation controls. Support and consult with product and...
-
Application Security Engineer
2 weeks ago
hyderabad, India HuntingCube Recruitment Solutions Full timeEXPERIENCE REQUIRED: · A minimum of 7+ years of experience. RESPONSIBILITIES: Establish security best processes and practices for our mobile, on-premises and cloud-based platforms. Provide expert knowledge and guidance to the product teams about security vulnerabilities and remediation controls. Support and consult with product and...
-
Application Security Engineer
2 weeks ago
Hyderabad, India HuntingCube Recruitment Solutions Full timeEXPERIENCE REQUIRED:· A minimum of 7+ years of experience.RESPONSIBILITIES: Establish security best processes and practices for our mobile, on-premises and cloud-based platforms. Provide expert knowledge and guidance to the product teams about security vulnerabilities and remediation controls. Support and consult with product and development teams...
-
Application security engineer
2 weeks ago
Hyderabad, India HuntingCube Recruitment Solutions Full timeEXPERIENCE REQUIRED:· A minimum of 7+ years of experience.RESPONSIBILITIES: Establish security best processes and practices for our mobile, on-premises and cloud-based platforms. Provide expert knowledge and guidance to the product teams about security vulnerabilities and remediation controls. Support and consult with product and development teams...
-
Application Security Engineer
2 weeks ago
hyderabad, India HuntingCube Recruitment Solutions Full timeEXPERIENCE REQUIRED:· A minimum of 7+ years of experience.RESPONSIBILITIES: Establish security best processes and practices for our mobile, on-premises and cloud-based platforms. Provide expert knowledge and guidance to the product teams about security vulnerabilities and remediation controls. Support and consult with product and development teams...
-
Application Security Engineer
2 weeks ago
Hyderabad, India HuntingCube Recruitment Solutions Full timeEXPERIENCE REQUIRED:· A minimum of 7+ years of experience.RESPONSIBILITIES: Establish security best processes and practices for our mobile, on-premises and cloud-based platforms. Provide expert knowledge and guidance to the product teams about security vulnerabilities and remediation controls. Support and consult with product and development teams...
-
Application Security Engineer
2 weeks ago
Hyderabad, India HuntingCube Recruitment Solutions Full timeEXPERIENCE REQUIRED:· A minimum of 7+ years of experience.RESPONSIBILITIES: Establish security best processes and practices for our mobile, on-premises and cloud-based platforms. Provide expert knowledge and guidance to the product teams about security vulnerabilities and remediation controls. Support and consult with product and development teams...
-
Senior application security engineer
1 month ago
Hyderabad, India Backbase Full timeNo day at Backbase is the same, and even more so for our security engineers. We all know that security and banking need to go hand in hand and with hackers and tech evolving by the day, you’ll need to stay on your toes and ahead of the game. Your core responsibility is to ensure the delivery of secure software. You are the go-to person for security,...
-
Senior Application Security Engineer
1 month ago
Hyderabad, India Backbase Full timeNo day at Backbase is the same, and even more so for our security engineers. We all know that security and banking need to go hand in hand and with hackers and tech evolving by the day, you’ll need to stay on your toes and ahead of the game. Your core responsibility is to ensure the delivery of secure software. You are the go-to person for security,...
-
Senior Application Security Engineer
2 months ago
hyderabad, India Backbase Full timeNo day at Backbase is the same, and even more so for our security engineers. We all know that security and banking need to go hand in hand and with hackers and tech evolving by the day, you’ll need to stay on your toes and ahead of the game. Your core responsibility is to ensure the delivery of secure software. You are the go-to person for security,...
-
Cloud Native Security Engineer
1 month ago
Hyderabad, Telangana, India CloudSploit by Aqua Security Full timeAbout the RoleAqua Security is seeking a talented Cloud Native Security Engineer to join our team. As a Cloud Native Security Engineer, you will be responsible for developing and maintaining our cloud native security platform, ensuring the highest levels of security for our customers' applications.About the TeamOur team is comprised of experienced developers...
-
Senior Application Security Engineer
1 month ago
hyderabad, India Backbase Full timeNo day at Backbase is the same, and even more so for our security engineers. We all know that security and banking need to go hand in hand and with hackers and tech evolving by the day, you’ll need to stay on your toes and ahead of the game.Your core responsibility is to ensure the delivery of secure software. You are the go-to person for security,...
-
Senior Application Security Engineer
3 months ago
Hyderabad, India Backbase Full timeNo day at Backbase is the same, and even more so for our security engineers. We all know that security and banking need to go hand in hand and with hackers and tech evolving by the day, you’ll need to stay on your toes and ahead of the game.Your core responsibility is to ensure the delivery of secure software. You are the go-to person for security,...
-
Senior Application Security Engineer
1 month ago
Hyderabad, Telangana, India Tanla Platforms Limited Full timeJob Title: Senior Application Security EngineerAt Tanla Platforms Limited, we are seeking a highly skilled Senior Application Security Engineer to join our team. As a key member of our security team, you will play a crucial role in safeguarding our applications and digital assets against security threats.Key Responsibilities:Conduct comprehensive security...
-
Senior Application Security Engineer
3 months ago
Hyderabad, India Backbase Full timeNo day at Backbase is the same, and even more so for our security engineers. We all know that security and banking need to go hand in hand and with hackers and tech evolving by the day, you’ll need to stay on your toes and ahead of the game.Your core responsibility is to ensure the delivery of secure software. You are the go-to person for security,...
-
Senior Application Security Engineer
3 months ago
Hyderabad, India Backbase Full timeNo day at Backbase is the same, and even more so for our security engineers. We all know that security and banking need to go hand in hand and with hackers and tech evolving by the day, you’ll need to stay on your toes and ahead of the game.Your core responsibility is to ensure the delivery of secure software. You are the go-to person for security,...
