Application security engineer
24 hours ago
About Nopal Cyber Nopal Cyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant. Through Managed Extended Detection and Response (MXDR), Attack Surface Management (ASM), Breach and Attack Simulation (BAS), and Advisory Services, we fortify our clients’ cybersecurity across both offense and defence. Our AI-driven Nopal360° platform, Nopal Go mobile app, and proprietary Cyber Intelligence Quotient (CIQ) enable organizations to quantify, track, and visualize their cybersecurity posture in real time. We democratize enterprise-grade security operations for organizations of all sizes by lowering the barrier to entry while raising the bar for security and service. Nopal Cyber, Hyderabad (Work from Office, 5 Days a Week)Employment Type : Full-time Run Static Application Security Testing (SAST) using tools such as Sonar Qube, Fortify, Checkmarx, Veracode, etc., to identify source-code vulnerabilities across multiple languages and frameworks (Java,. NET, Python, Java Script, etc.). Perform Dynamic Application Security Testing (DAST) (authenticated and unauthenticated) on web apps, APIs, and services; Plan and conduct Vulnerability Assessment and Penetration Testing (VAPT) for web applications, APIs, and backend services to identify business logic, configuration, and runtime flaws. Map VAPT findings back to code-level issues discovered in SAST to close the loop with development teams. Work with developers and Dev Sec Ops engineers to remediate vulnerabilities and embed security testing into build pipelines. Use Software Composition Analysis (SCA) tools such as Snyk, White Source, Nexus Lifecycle, Black Duck to identify open-source and third-party risks (vulnerabilities, license issues, outdated components). Generate, validate, and manage Software Bills of Materials (SBOMs) in formats like Cyclone DX and SPDX to strengthen software supply chain security. Apply secure coding principles aligned with OWASP Top 10, CWE, and language-specific security pitfalls. Required Skills & Experience ~8–12 years of experience in Application Security with direct, hands-on expertise in SAST, DAST, SCA, and VAPT. ~ Strong knowledge of secure software development practices and common vulnerability classes (OWASP Top 10, CWE, ASVS, language-specific security pitfalls). ~ Hands-on experience integrating security testing into CI/CD pipelines (Jenkins, Azure Dev Ops, Git Lab CI, Git Hub Actions). ~ Working knowledge of security architecture frameworks (e.g., STRIDE, attack trees) to support risk-based application security design and assessment. ~ Ability to develop and present detailed application security assessment reports, code-level remediation plans, and secure coding guidance aligned with industry standards and compliance requirements. ~ Bachelor’s degree in engineering, Computer Science, or related discipline. EC-Council Certified Application Security Engineer (CASE – Java/. NET)GIAC Secure Software Programmer (GSSP – Java/. NET)Programming language-neutral certifications like CSSLP.
-
Engineer, Application Security
3 weeks ago
Hyderabad, India ICE Data Services Full timeJob Purpose An ICE Application Security Engineer is part of a team responsible for ensuring that ICE produces and maintains secure applications. This team member influences secure design, performs code analysis, identifies vulnerabilities through hands-on penetration testing, assists developers in remediation efforts, and communicates findings to developers,...
-
Engineer, Application Security
3 weeks ago
Hyderabad, India ICE Full timeJob DescriptionJob PurposeAn ICE Application Security Engineer is part of a team responsible for ensuring that ICE produces and maintains secure applications. This team member influences secure design, performs code analysis, identifies vulnerabilities through hands-on penetration testing, assists developers in remediation efforts, and communicates findings...
-
Engineer, Application Security
2 weeks ago
Hyderabad, Telangana, India ICE Full time ₹ 20,00,000 - ₹ 25,00,000 per yearJob DescriptionJob PurposeAn ICE Application Security Engineer is part of a team responsible for ensuring that ICE produces and maintains secure applications. This team member influences secure design, performs code analysis, identifies vulnerabilities through hands-on penetration testing, assists developers in remediation efforts, and communicates findings...
-
Engineer, Application Security
2 weeks ago
Hyderabad, Telangana, India ICE Data Services Full time ₹ 15,00,000 - ₹ 25,00,000 per yearJob PurposeAn ICE Application Security Engineer is part of a team responsible for ensuring that ICE produces and maintains secure applications. This team member influences secure design, performs code analysis, identifies vulnerabilities through hands-on penetration testing, assists developers in remediation efforts, and communicates findings to developers,...
-
Application Security Engineer
22 hours ago
Hyderabad, Telangana, India Castellum Labs Full time ₹ 5,00,000 - ₹ 25,00,000 per yearThe Company --Castellum Labs is a Next Gen Cyber Security Technology Venture that started in 2018, from Hyderabad, India with global ambitions, to change the cybersecurity service model. The company's vision is to change the cybersecurity value model in the industry. They use SaaS platforms, advanced lab infra in the cloud and a team of specialized experts...
-
Application Security Engineer
2 weeks ago
Hyderabad, Telangana, India Evnek Full time ₹ 12,00,000 - ₹ 36,00,000 per year**Job Title: Application Security EngineerExperience Required: 5+ YearsLocation: HyderabadShifts: General Shift & UK Shift (Rotational)Notice Period: Immediate Joiners OnlyCab Facility: AvailableJob OverviewWe are looking for a skilled and passionateApplication Security Engineer**to join our Cybersecurity team in Hyderabad. This role is ideal for...
-
Hyderabad, India Blackbaud Full timeAs a member of the Cyber Security organization at Blackbaud, the Application Security Engineer is a specialized position that plays a key role in securing software built and/or used by Blackbaud.You can expect to work closely with software development teams as well as third-party organizations to ensure that security, privacy, and compliance requirements are...
-
Hyderabad, Telangana, India Blackbaud Full time ₹ 12,00,000 - ₹ 36,00,000 per yearAs a member of the Cyber Security organization at Blackbaud, the Application Security Engineer is a specialized position that plays a key role in securing software built and/or used by Blackbaud.You can expect to work closely with software development teams as well as third-party organizations to ensure that security, privacy, and compliance requirements are...
-
Application Security Engineer
1 week ago
Bengaluru, Chennai, Hyderabad, India Mouri Tech Full time ₹ 15,00,000 - ₹ 25,00,000 per yearJob Description:We are seeking a highly skilled Application Security Engineer with a strong background in backend penetration testing, secure coding, and security architecture. The ideal candidate will have experience working in development and/or DevSecOps roles and be comfortable collaborating across engineering, operations, and security teams to drive...
-
Application Security Engineer
7 days ago
Hyderabad, India Foodsmart Full timeAbout us:Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians. Our platform is designed to foster healthier food choices, drive lasting behavior change, and deliver long-term health outcomes. Through our highly personalized, digital platform, we guide our 2.2 million members—including those in...
