Senior Application Security Engineer
3 weeks ago
Company Profile Our client is a global IT services company that helps businesses with digital transformation with offices in India and the United States. It helps businesses with digital transformation, provide IT collaborations and uses technology, innovation, and enterprise to have a positive impact on the world of business. With expertise is in the fields of Data, IoT, AI, Cloud Infrastructure and SAP, it helps accelerate digital transformation through key practice areas - IT staffing on demand, innovation and growth by focusing on cost and problem solving. Job Profile: AppSec DevSecOps Engineer Location: Noida Employment Type: Full-time, WFO, Regular shift Preferred experience: 8 - 10 years The Role The AppSec DevSecOps Engineer is responsible for integrating security across the CI/CD pipeline, strengthening application security through automated and manual testing, and enabling secure development practices across engineering teams. The role focuses on DAST, threat modeling, vulnerability triage, security automation, and driving DevSecOps adoption to ensure continuous, scalable, and proactive security coverage. Responsibilities - Lead threat modeling exercises and manually validate findings from DAST tools such as Fortify WebInspect. - Integrate and optimize AppSec tools (DAST/SAST/SCA/Secrets Scanning) within CI/CD pipelines. Perform manual security testing to uncover business logic gaps and abuse cases. Conduct second-level triage for critical/high-risk vulnerabilities and ensure effective prioritization. Evaluate DAST tool coverage, feature utilization, and recommend improvements for automation. Collaborate with development, DevOps, and cloud teams to embed security gates into CI/CD workflows. Conduct stakeholder discussions on AppSec findings, false positives, and security exceptions. Guide application teams on secure coding, remediation planning, and secure architecture patterns. Ensure timely DAST testing, reporting, SLA adherence, and maintain key AppSec metrics. Mentor analysts and contribute to developing security automation, scripts, and self-service security capabilities. Must - Have Qualifications: Strong hands-on experience with AppSec tools: DAST (Fortify WebInspect), SAST, SCA, secrets scanning. Experience integrating security tools into CI/CD pipelines (Jenkins, GitLab CI, Azure DevOps, GitHub Actions). Deep knowledge of OWASP Top 10, API Security Top 10, and common application attack vectors. Strong manual testing skills for business logic and abuse-case detection. Experience triaging vulnerabilities and validating true/false positives. Solid understanding of secure SDLC, DevSecOps practices, and cloud-native security basics. Excellent communication for stakeholder discussions and developer enablement. Preferred Qualifications: Experience with IaC security (Terraform, CloudFormation) and container security (Docker, Kubernetes). Knowledge of threat modeling tools (e.g., ThreatModeler, MS Threat Modeling). Scripting skills (Python, Bash, PowerShell) for automation. Exposure to IAST and RASP solutions. Security certifications like OSCP, OSWE, GWAPT, CEH, or DevSecOps-specific credentials. Application Method Apply on LinkedIn or email your resume to:
-
Senior Application Security Engineer
3 days ago
bangalore, India Mobileum Full timeRole: Senior Security Expert Department: Engineering / Development / R&D Reports To: DevSecOps Lead (Techno-Managerial) Experience : 10-12 years About the Job: We are looking for a Senior Security Expert to drive AppSec practices, secure SDLC processes, and ISO 27001–aligned security controls across Engineering. The role focuses on implementing secure...
-
Senior Application Security Engineer
2 days ago
bangalore, India Mobileum Full timeRole: Senior Security Expert Department: Engineering / Development / R&D Reports To: DevSecOps Lead (Techno-Managerial) Experience : 10-12 years About the Job: We are looking for a Senior Security Expert to drive AppSec practices, secure SDLC processes, and ISO 27001–aligned security controls across Engineering. The role focuses on implementing secure...
-
Senior Application Security Engineer
3 weeks ago
Bangalore Division, India Mobileum Full timeRole: Senior Security Expert Department: Engineering / Development / R&D Reports To: DevSecOps Lead (Techno-Managerial) Experience : 10-12 years About the Job: We are looking for a Senior Security Expert to drive AppSec practices, secure SDLC processes, and ISO 27001–aligned security controls across Engineering. The role focuses on implementing secure...
-
Senior Application Security Manager
2 weeks ago
bangalore, India ARCON Full timeJob Summary: We are seeking a highly experienced and strategic-minded Senior Manager of Application Security to lead our security initiatives. The ideal candidate will be a seasoned leader with a deep understanding of application security, vulnerability management, and secure software development lifecycle (SDLC) best practices. You will be responsible for...
-
Senior Application Security Engineer
36 minutes ago
bangalore, India Employ Full timeJob Title: Application Security Engineer – Code RemediationExperience - 5-8 yearsEmployment Type- Contract (3 months with possibility of further extension)About the Role: We are seeking a highly skilled Application Security Engineer – Code Remediation to join our client's growing team. This role is focused on analyzing, identifying, and remediating...
-
Application Security Engineer
41 minutes ago
bangalore, India KPG99 INC Full timeJob Title: Application Security EngineerLocation: Remote (Offshore)Contract Type: ContractJob DescriptionSkills Required: • At lease 3 years of Application Security Experience• Experience with SAST, SCA, DAST• Experience with Python, C#, or Javascript• Experience security testing for Web ApplicationsAs the Application Security Engineer (Analyst) at...
-
Security Engineer
7 days ago
bangalore, India Altered Security Full timeWe are looking for Security Engineers with following qualities to join our team at Altered Security: Passionate about information security. Ability to solve challenges. Interest in new attack vectors and creating challenges. Demonstrated experience in Windows and Active Directory security. If you hold CRTP certification, it is a plus. Who should apply: Very...
-
Senior Application Security Analyst
3 days ago
bangalore, India ADP Full timeLead/Senior Application Security Analyst Job description: This position will be responsible for • conducting hands-on security tests on web, mobile, premise based, mainframe based , citrix based applications & platforms to identify security vulnerabilities • responsible for assessing risk of the found vulnerabilities as per ADP standards and documenting...
-
Application Security Engineer
2 weeks ago
bangalore, India Novac Technology Solutions Full timeJob Description: Application Security Engineer Experience : 2 to 5 years Location : Alwarpet,Chennai. Job Summary : In this role, you will focus on ensuring the security of web applications, mobile applications, and APIs through a combination of proactive security testing, code review, threat modeling, and vulnerability assessments. You will work closely...
-
Senior Application Security Engineer
3 weeks ago
Bangalore, Karnataka, India Hewlett Packard Enterprise Full timeSenior Application Security Engineer This role has been designed as Hybrid with an expectation that you will work on average 2 days per week from an HPE office Who We Are Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work We help companies connect protect analyze and act on their data and applications...
