
Senior Application Security Engineer
3 hours ago
Who we are
We&aposre a leading, global security authority that&aposs disrupting our own category. Our encryption is trusted by the major ecommerce brands, the world&aposs largest companies, the major cloud providers, entire country financial systems, entire internets of things and even down to the little things like surgically embedded pacemakers. We help companies put trust - an abstract idea - to work. That&aposs digital trust for the real world.
Job summary
As a Senior Application Security Engineer specializing in application security and DevSecOps within our cybersecurity team, you will play a crucial role in safeguarding our company&aposs web applications by integrating security practices into the Software Development Life Cycle (SDLC). You will be responsible for the proactive identification, assessment, and mitigation of security vulnerabilities, developing and driving the adoption of DevSecOps practices, and ensuring that security is embedded in all phases of software development.
What you will do
- Lead the integration of security measures into the SDLC, ensuring that all aspects of web application development are secure by design.
- Conduct thorough security assessments and penetration testing for web applications to identify vulnerabilities and security gaps.
- Play an advisory role with software engineering teams in the architectural design of new applications, emphasizing secure architectural patterns and best practices.
- Perform and coordinate manual and automated code reviews.
- Lead threat modeling exercises across engineering teams.
- Collaborate with software development teams to implement DevSecOps practices, providing guidance on secure coding, automated security testing, and continuous monitoring.
- Contribute to internal security tooling development or integration.
- Develop and maintain a secure framework for code deployment, automating security processes where possible to streamline the development workflow.
- Work cross-functionally with various teams, including IT, engineering, operations, and business units, to communicate security policies and procedures effectively.
- Establish and maintain strong relationships with stakeholders, presenting complex security concepts in an accessible manner.
- Stay abreast of the latest security threats, trends, and technologies in web application security and incorporate this knowledge into company practices.
- Assist in the development and enforcement of security policies and procedures, ensuring compliance with industry standards and regulations.
- Assist with managing bug bounty program.
- Develop program documentation to promote operational stability and scalability.
- Support Leadership in defining and executing the roadmap for DevSecOps maturity and secure SDLC initiatives.
- Support governance and compliance teams on secure engineering practices for aligning security policies related to SDLC
- Drive and support security identified remediation efforts.
- Foster and promote a security-forward culture.
- Mentor junior team members.
- Other duties and responsibilities, as assigned.
What you will have
- Minimum of 5 years of experience in cybersecurity, with a focus on web application security and secure SDLC.
- Proficiency with programming/scripting languages such as JavaScript, Python, Java, Bash, PowerShell
- Experience in penetration testing
- Bachelors or masters degree in computer science, cybersecurity, or a related field.
- Proven track record of working with DevSecOps tools (such as SAST/DAST/SCA) and methodologies.
- Strong understanding of security protocols, cryptography, authentication, authorization, and security vulnerabilities.
- Excellent communication skills with the ability to engage technical and non-technical stakeholders.
- Strong analytical and problem-solving abilities, with a meticulous attention to detail.
- Advanced level of knowledge of Information Security design concepts and principles
Nice to have
- Master&aposs degree in a technical discipline
- Professional security certifications such as CISSP, OSCP, CEH, or equivalent are highly desirable.
- Experience working in highly regulated environments.
- Advanced level of knowledge of IT frameworks and standards (NIST, OWASP Top Ten, COBIT, ITIL, ISO, PCI-PIN, GDPR, WebTrust, FedRAMP)
- Certified Information Systems Auditor (CISA)
- AWS Solutions Architect
Benefits
- Generous time off policies
- Top shelf benefits
- Education, wellness and lifestyle support
-
Senior Application Security Engineer
4 weeks ago
Bengaluru, Karnataka, India Tide Platform Full timeABOUT TIDEAt Tide we are building a finance platform designed to save small businesses time and money We provide our members with business accounts and related banking services but also a comprehensive set of connected administrative solutions from invoicing to accounting Launched in 2017 Tide is now used by over 1 million small businesses across the...
-
Application Security Specialist
1 day ago
Bengaluru, Karnataka, India beBeeSecurity Full time ₹ 1,50,00,000 - ₹ 2,00,00,000Job Title:Senior Application Security Engineer">Our company is looking for a skilled Senior Application Security Engineer to join our team.">About the Role:We are seeking an experienced Senior Application Security Engineer who can assist in securing our applications and infrastructure. The ideal candidate will have a strong background in security, with...
-
Senior Application Security Engineer
2 days ago
Bengaluru, Karnataka, India TechBlocks Full timeAbout Us:Techblocks is a leading global digital product development firm. We unify strategy, design and technology with continuous growth-centric digital product engineering solutions for F500 companies and global brands, including Bell Telecom, Bausch Health (Previously Valeant Pharma), Honda Motors, AES Corp, Thomson Reuters Carswell, First American and...
-
Application Security Engineer
5 days ago
Bengaluru, Karnataka, India beBeeSecurity Full time ₹ 15,00,000 - ₹ 25,00,000Job Title: Application Security EngineerWe are seeking an experienced Application Security Engineer to drive secure software development life cycles across various teams. The ideal candidate will have hands-on expertise in Secure SDLC practices, Secure Code Reviews, and Software Composition Analysis (SCA) & Threat Modeling.Key Responsibilities:Develop and...
-
Senior Security Engineer
2 days ago
Bengaluru, Karnataka, India beBeeProduct Full time ₹ 18,00,000 - ₹ 19,50,000Security Engineer- Product and SDLC ExpertOur organization is seeking an experienced Security Engineer to lead the security of our products and services. This role involves driving security initiatives, mentoring engineers, and serving as a subject matter expert in ensuring a security-first culture.About the RoleThis position requires a senior, hands-on...
-
Application Security Expert
1 day ago
Bengaluru, Karnataka, India beBeeSecurity Full time ₹ 1,73,50,000 - ₹ 2,51,35,000Job DescriptionAs a Senior Application Security Engineer, you will play a crucial role in ensuring the security and integrity of our applications through regular assessments, audits, and penetration testing.The ideal candidate will have a strong background in multiple programming languages, advanced understanding of security flaws, and experience with Agile...
-
Senior Security Engineer
2 days ago
Bengaluru, Karnataka, India beBeeProductSecurity Full time ₹ 1,81,91,808 - ₹ 2,51,53,352As a senior security engineer, you will play a pivotal role in ensuring the robustness and reliability of our products.Key Responsibilities:Serve as the product security subject-matter expert collaborating with other teams to identify, assess, root-cause, address, validate, and prevent product security issues.Advocate secure development practices, leveraging...
-
Application Security Engineer
4 weeks ago
Bengaluru, Karnataka, India Coders Brain Technology Private Limited Full timeWere Hiring : WebPTP1 - ConsultantLocation : Bangalore/PuneExperience : 4-8 YearsSalary : As per market standardEmployment Type : Full-TimeJoining : the Role : We are seeking a skilled Application Security Engineer / Penetration Tester to perform both automated and manual security testing on applications, APIs, and networks. You will work closely with...
-
Chief Application Security Strategist
6 days ago
Bengaluru, Karnataka, India beBeeApplication Full timeSenior Application Security EngineerPearson is seeking a highly motivated and experienced Senior Application Security Engineer with a strong background in DevOps, Application Security, and Cloud Security. This role will play a crucial part in leading and supporting the integration of security controls into CI/CD pipelines and cloud environments.Key...
-
Application Security Engineer
3 weeks ago
Bengaluru, Karnataka, India RemoteStar Full timeJob DescriptionAbout the client:Our Client is a global technology company, home to more than 220,000 people across 60 countries, delivering industry-leading capabilities centered around digital, engineering, cloud and AI, powered by a broad portfolio of technology services and products. We work with clients across all major verticals, providing industry...