Security Engineer III
1 week ago
The Application Security Engineer leads efforts to enhance application security and the secure software development lifecycle. This individual is responsible for performing manual application security assessments (application pentests) and communicating security findings to the developers and QA teams. Additionally, the individual will provide application design support and security best practice guidance, in the form of consultations, to various development teams and business stakeholders. This individual will also actively promote security through engaging interactive workshops and exercises, such as internal Capture The Flag (CTF) events. Principal Accountabilities Serve as the primary application security expert for development teams, offering security consulting and best practice guidance throughout the Software Development Life Cycle (SDLC). Perform manual security assessments at key points in the SDLC. Produce documentation (reports) and present findings of manual security assessments to various stakeholders, including senior leadership. Participate in security architecture reviews and threat modelling. Contribute to automation initiatives, including the integration of new security tools and processes (e.g., AI). Demonstrate a commitment to continuous education and staying current within the application security domain, promoting collaboration and knowledge sharing. Skills Requirements 5+ years experience with industry standard penetration testing, or ability to demonstrate equivalent knowledge. Expertise performing blackbox/greybox/whitebox security assessments of applications (e.g., web applications, APIs, thick clients, web sockets) which use and/or proprietary protocols. Expert level skills with application security testing tools including: Burpsuite, sqlmap, nmap, etc. Experience performing manual reviews of application source code for security vulnerabilities written in various languages including: Java, Javascript, .Net (C#), etc. Experience with Cloud architectures, security principles and services. Google Cloud Platform (GCP) is preferred. Experience with automating security testing and/or other relevant activities to streamline service delivery. Preferred scripting languages: Python, bash, Powershell, etc. Experience with UNIX or Linux. A self-starter who is highly motivated. Proactively seek answers, ask for help when needed, and communicate solutions. Excellent Oral and Written communications skills. Ability to effectively communicate and interface with peers and stakeholders at all levels, including senior leadership. Nice To Have Experience in securing modern APIs, including knowledge of authentication/authorization standards like OAuth 2.0 and JWT, and understanding API-specific vulnerabilities. Experience in conducting formal threat modeling using frameworks like STRIDE to identify potential security flaws in the design phase. Experience with AI/ML security testing methodologies, including understanding of OWASP Top 10 for Large Language Models (LLMs) and common AI security vulnerabilities, and using AI to improve pentesting. Experience with prior development work. Experience with application reverse engineering and using tools such as: Java decompilers, .Net decompilers, IDAPro, etc. Experience with Capture The Flag (CTF) competitions and bug bounty programs. Relevant industry certifications such as OSCP, eWPTX, CCSP, GCP Professional Cloud Security Engineer, etc.
-
Security Platform Engineer Iii
2 weeks ago
Bangalore, Karnataka, India Eli Lilly Full timeAt Lilly we unite caring with discovery to make life better for people around the world We are a global healthcare leader headquartered in Indianapolis Indiana Our employees around the world work to discover and bring life-changing medicines to those who need them improve the understanding and management of disease and give back to our communities through...
-
Security Engineer Iii
3 weeks ago
Bangalore, Karnataka, India JPMorgan Chase Full timeJob Category Security Engineering Your seniority as a security engineer puts you in the ranks of the top talent in your field Play a critical role at one of the world s most iconic financial institutions where security is vital As a Security Engineer III at JPMorganChase within the Cybersecurity Technology Controls team you serve as a seasoned member of a...
-
SDE - I & II & III
2 weeks ago
bangalore district, India Mitigata™ - Smart cyber insurance Full timeAbout Us [Mitigata] is a leading provider of Cyber Security, Compliance, and Risk Management solutions helping businesses safeguard digital assets, ensure regulatory compliance, and minimize exposure to cyber threats. With a strong portfolio of solutions and services, we empower enterprises to build a resilient cyber defense posture. Role Overview We are...
-
Security Engineer III
1 week ago
bangalore, India CME Group Full timeThe Application Security Engineer leads efforts to enhance application security and the secure software development lifecycle. This individual is responsible for performing manual application security assessments (application pentests) and communicating security findings to the developers and QA teams. Additionally, the individual will provide application...
-
DevOps Engineer III
9 hours ago
bangalore, India interface.ai Full timeGet To Know Us First!Who We Are At interface.ai, we’re redefining the future of banking with AI. Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions. Our mission: To make banking effortless, intelligent, and...
-
Security Engineer III
1 week ago
Bangalore, India CME Group Full timeThe Application Security Engineer leads efforts to enhance application security and the secure software development lifecycle. This individual is responsible for performing manual application security assessments (application pentests) and communicating security findings to the developers and QA teams. Additionally, the individual will provide application...
-
DevOps Engineer III
36 minutes ago
bangalore, India interface.ai Full timeGet To Know Us First! Who We Are At interface.ai, we’re redefining the future of banking with AI. Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions. Our mission : To make banking effortless, intelligent, and...
-
Data Engineer III
7 days ago
bangalore district, India Withum Full timeWithum is a place where talent thrives - where who you are matters. It’s a place of endless opportunities for growth. A place where entrepreneurial energy plus inclusive teamwork equals exponential results. We empower clients with innovative tools and solutions to address their data, analytics, and business intelligence needs. At Withum, talent...
-
Software Engineer III
2 weeks ago
bangalore, India JPMorgan Chase Full timeAs a Software Engineer III at JPMorgan Chase within the Asset and Wealth Management team, you will be a seasoned member of an agile team, tasked with designing and delivering trusted, market-leading technology products that are secure, stable, and scalable. Your responsibilities will include implementing critical technology solutions across multiple...
-
Software Engineer III
2 weeks ago
bangalore, India Chase- Candidate Experience page Full timeWe have an exciting and rewarding opportunity for you to take your software engineering career to the next level. As a Software Engineer III at JPMorgan Chase within the Asset & Wealth Management, you serve as a seasoned member of an agile team to design and deliver trusted market-leading technology products in a secure, stable, and scalable way. You are...
