Application Security Engineer

1 week ago

Bengaluru Chennai Hyderabad, India Mouri Tech Full time ₹ 15,00,000 - ₹ 25,00,000 per year

Job Description:

We are seeking a highly skilled Application Security Engineer with a strong background in backend penetration testing, secure coding, and security architecture. The ideal candidate will have experience working in development and/or DevSecOps roles and be comfortable collaborating across engineering, operations, and security teams to drive secure software development practices.

Key Responsibilities:

  • Conduct penetration testing on applications and supporting infrastructure to identify and remediate security vulnerabilities.
  • Perform security code reviews and provide guidance on secure coding practices to development teams.
  • Collaborate in threat modeling, attack surface analysis, and design reviews during the SDLC.
  • Integrate security tools and practices (e.g., SAST, DAST) into CI/CD pipelines.
  • Lead the implementation of security controls across containerized environments, especially within Kubernetes.
  • Evaluate and improve the security posture of applications running in on-premise, cloud, and hybrid environments.
  • Develop and maintain security automation scripts and tools for continuous testing and compliance.
  • Provide technical expertise in application, network, database, and cloud security architecture.
  • Support incident response efforts related to application-level security breaches.
  • Stay updated with the latest vulnerabilities, threats, and technologies in the application security space.

Required Skills and Experience:

  • Proven experience in application and infrastructure penetration testing.
  • Strong knowledge of application security principles and modern software development practices.
  • Experience with DevSecOps, including integrating security into CI/CD workflows.
  • Proficiency in secure coding and ability to review source code in languages like Java, Python, JavaScript, or Go.
  • Hands-on experience with SAST and DAST tools (e.g., Fortify, SonarQube, Veracode, Burp Suite, OWASP ZAP).
  • Deep understanding of security mechanisms in Applications, Operating Systems, Networks, Databases, Virtualization, and Cloud platforms (e.g., AWS, Azure, GCP).
  • Working knowledge of securing Kubernetes clusters and containerized applications.
  • Familiarity with network security architecture, firewalls, and threat modeling techniques.
  • Strong understanding of security standards and frameworks (e.g., OWASP Top 10, NIST, ISO 27001, CIS Benchmarks).

Preferred Qualifications:

  • Certifications such as OSCP, GWAPT, CEH, CISSP, or CSSLP.
  • Experience with Infrastructure as Code (IaC) security and tools like Terraform or CloudFormation.
  • Background in development or system administration is a plus.

  • Principal Application Security Engineer I

    1 week ago

    Bengaluru, India RSA Security Full time

    Product Overview Outseer Fraud Manager is an advanced, omnichannel fraud detection hub that provides risk-based, multi-factor authentication for organizations seeking to protect their consumers from fraud across digital channels. Powered by the AI/ML based Risk Engine, Outseer Fraud Manager is designed to measure the risk associated with a user’s login...

  • Principal Application Security Engineer I

    1 week ago

    Bengaluru, India RSA Security Full time

    Product Overview Outseer Fraud Manager is an advanced, omnichannel fraud detection hub that provides risk-based, multi-factor authentication for organizations seeking to protect their consumers from fraud across digital channels. Powered by the AI/ML based Risk Engine, Outseer Fraud Manager is designed to measure the risk associated with a user’s login...

  • Engineer, Application Security

    3 weeks ago

    Hyderabad, India ICE Data Services Full time

    Job Purpose An ICE Application Security Engineer is part of a team responsible for ensuring that ICE produces and maintains secure applications. This team member influences secure design, performs code analysis, identifies vulnerabilities through hands-on penetration testing, assists developers in remediation efforts, and communicates findings to developers,...

  • Engineer, Application Security

    3 weeks ago

    Hyderabad, India ICE Full time

    Job DescriptionJob PurposeAn ICE Application Security Engineer is part of a team responsible for ensuring that ICE produces and maintains secure applications. This team member influences secure design, performs code analysis, identifies vulnerabilities through hands-on penetration testing, assists developers in remediation efforts, and communicates findings...

  • Engineer, Application Security

    1 week ago

    Hyderabad, Telangana, India ICE Full time ₹ 20,00,000 - ₹ 25,00,000 per year

    Job DescriptionJob PurposeAn ICE Application Security Engineer is part of a team responsible for ensuring that ICE produces and maintains secure applications. This team member influences secure design, performs code analysis, identifies vulnerabilities through hands-on penetration testing, assists developers in remediation efforts, and communicates findings...

  • Engineer, Application Security

    1 week ago

    Hyderabad, Telangana, India ICE Data Services Full time ₹ 15,00,000 - ₹ 25,00,000 per year

    Job PurposeAn ICE Application Security Engineer is part of a team responsible for ensuring that ICE produces and maintains secure applications. This team member influences secure design, performs code analysis, identifies vulnerabilities through hands-on penetration testing, assists developers in remediation efforts, and communicates findings to developers,...

  • Application security engineer

    11 hours ago

    Hyderabad, India NopalCyber Full time

    About Nopal Cyber Nopal Cyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant. Through Managed Extended Detection and Response (MXDR), Attack Surface Management (ASM), Breach and Attack Simulation (BAS), and Advisory Services, we fortify our clients’ cybersecurity across both offense...

  • Application Security Engineer

    9 hours ago

    Hyderabad, Telangana, India Castellum Labs Full time ₹ 5,00,000 - ₹ 25,00,000 per year

    The Company --Castellum Labs is a Next Gen Cyber Security Technology Venture that started in 2018, from Hyderabad, India with global ambitions, to change the cybersecurity service model. The company's vision is to change the cybersecurity value model in the industry. They use SaaS platforms, advanced lab infra in the cloud and a team of specialized experts...

  • Application Security Engineer

    1 week ago

    Bengaluru, Hyderabad, Pune, India Infosys Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    About the Role:We are looking for experienced and passionate Application Security Engineers to join our team. This role involves securing web applications, automating security processes, and integrating security into the software development lifecycle. The ideal candidate will have strong programming skills, a deep understanding of application...

  • Application Security Engineer

    1 week ago

    Hyderabad, Telangana, India Evnek Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    **Job Title: Application Security EngineerExperience Required: 5+ YearsLocation: HyderabadShifts: General Shift & UK Shift (Rotational)Notice Period: Immediate Joiners OnlyCab Facility: AvailableJob OverviewWe are looking for a skilled and passionateApplication Security Engineer**to join our Cybersecurity team in Hyderabad. This role is ideal for...