Senior Application Security Engineer
4 days ago
Security Testing- Conduct Static Application Security Testing (SAST) and Software Composition Analysis (SCA) - Perform Dynamic Application Security Testing (DAST) and Interactive Application Security Testing (IAST) for deeper analysis of vulnerabilities during runtime - Execute Mobile Application Security Testing and API Security Testing to safeguard against OWASP Security risksVulnerability Management and Threat Mitigation- Identify, prioritize, and remediate vulnerabilities through Vulnerability Assessments and Penetration Testing (VAPT) - Identify and mitigate vulnerabilities aligned with the latest OWASP Top 10 risks, including Injection, Broken Access Control, and Insecure Design - Assess and remediate vulnerabilities by OWASP Application Security Verification Standard (ASVS)Cloud Security- Secure cloud environments hosted on AWS and Azure, adhering to CIS Benchmarks and NIST Cybersecurity Framework standardsCompliance and Regulations- Ensure application and infrastructure compliance with standards such as PCI DSS, HIPAA, and GDPR - Conduct regular assessments to align with SANS Top 25 Software Errors, NIST SP 800-53, and CIS ControlsDevSecOps Integration- Embed security practices within the Secure Software Development Lifecycle (SDLC) by automating security checks and remediation - Collaborate with DevOps teams to integrate security tools and testing into the CI/CD pipelines using Jenkins and Azure DevOpsRequired Skills and QualificationsTechnical Proficiency- Legacy technologies: Java, .NET - Modern technologies: React, Node.js, Python, PHP, Ruby/Rails, Angular, etc - CMS experience with Magento-Adobe and AvocodeCloud Skills- Expertise with AWS and Azure cloud platformsSecurity and Compliance Knowledge- Strong understanding of OWASP Top 10, OWASP ASVS, PCI DSS, HIPAA, GDPR, CIS Benchmarks, and NIST Cybersecurity Frameworks - Familiarity with SANS Top 25 Software Errors and their remediation strategiesSecurity Testing Expertise- Proficiency in SAST, SCA, DAST, IAST, and penetration testing techniques - Experience in Threat Modeling to proactively identify and mitigate risks - Strong knowledge of VAPT, mobile, and API security testingDevSecOps and SDLC Integration- Expertise in implementing Secure Software Development Lifecycle (SDLC) practices - Proficiency in integrating security tools with CI/CD pipelines using Jenkins and Azure DevOpsSoft Skills- Excellent communication skills to bridge the gap between technical and business teams - Ability to articulate technical issues to both technical and non-technical audiences
-
Senior Security Engineer
4 days ago
New Delhi, India TAC Security Full timeJob descriptionAs a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and...
-
Senior Application Security Engineer
4 days ago
New Delhi, India NopalCyber Full timeAbout NopalCyber NopalCyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant. Through Managed Extended Detection and Response (MXDR), Attack Surface Management (ASM), Breach and Attack Simulation (BAS), and Advisory Services, we fortify our clients’ cybersecurity across both offense...
-
New Delhi, India Nexthire Full time1. Application Security Analyst/Engineer- 3+ years of experience in VAPT, ethical hacking, Red teaming, or security testingConduct security assessments, including network, web, mobile, and cloud penetration testing.Identify, exploit, and document vulnerabilities to assess the security posture of systems.Perform manual testing alongside automated...
-
New Delhi, India Nexthire Full time1. Application Security Analyst/Engineer- 3+ years of experience in VAPT, ethical hacking, Red teaming, or security testingConduct security assessments, including network, web, mobile, and cloud penetration testing.Identify, exploit, and document vulnerabilities to assess the security posture of systems.Perform manual testing alongside automated...
-
Security Engineer
3 weeks ago
Delhi, India TAC Security Full timeJob descriptionAs a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and...
-
Security Engineer
3 weeks ago
Delhi, India TAC Security Full timeJob description As a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and...
-
Senior Application Security Specialist
4 days ago
New Delhi, India YASH Technologies Full timeJD:-Must to Have Responsibilities:- Communication: Should be able to understand and articulate technical aspects clearly - Cloud Security Expertise: Understand cloud development processes and provide security support throughout, - Vulnerability Management: Hands-on with at least two tools like Nessus Pro, Tenable IO, FireEye, CrowdStrike, Defender, SpyCloud....
-
Security Engineer
3 weeks ago
Delhi, India TAC Security Full timeJob descriptionAs a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and...
-
Security Engineer
2 weeks ago
Delhi, India TAC Security Full timeJob description As a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and...
-
Security Engineer
4 weeks ago
Delhi, India TAC Security Full timeJob descriptionAs a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and...
