Application Security Engineer

Here are the mandatory skill set.

Job Tittle: Security Application Engineer

Location: Pune

NP: Immediate

Cyber security -- umbrella

- product security - main skill

- application security - it will work

- network security - basic knowledge is needed

- infrastructure security - not needed

Tools to consider

Coverity

Nessus

blackduck

threat modeler

irius risk

skills to ignore

SOC/SIEM - if more then 2 years

support roles - no

Please find here with the JD - Job Summary:

• Do you love software and system security? Do you have a strong background in software development? Want to exercise your skills across many OS and hardware platforms in a critical function in a growing team? Want the stability of a Fortune 500 company and the challenges of a multi-site, international development group serving a world-wide, multi-billion-dollar industry? Come work at Emerson We are looking for an experienced application security engineer to join our security team Our products are developed using the SAFe Framework and run on a variety of platforms including Windows, Unix varieties, and mobile platforms on both standard and custom hardware.

In this Role, Your Responsibilities Will Be:

• Analysis of UML diagrams and DFDs/Threat Models for security flaws and detailing specific recommendations in software and system setup to address them
• Mentoring of developers on security topics and coding
• Develop and deliver trainings to developers and management on security topics
• Analyzing requirements and performing code review for security flaws
• Establish direction for security requirements in our custom hardware and software
• Collaborate with other internal security groups across multiple divisions, at different levels, and in multiple international locations, as well as 3rd parties
• Continuous improvement of security processes via observation and measurement of project performance, and making updates to improve accuracy, reduce overhead, while maintaining compliance with IEC and 4-1 standards
• Participate in audits for standards compliance

Who You Are: You quickly and decisively act in constantly evolving, unexpected situations. You adjust communication content and style to meet the needs of diverse partners. You always keep the end in sight; puts in extra effort to meet deadlines. You analyze multiple and diverse sources of information to define problems accurately before moving to solutions. You observe situational and group dynamics and select best-fit approach. For This Role, You Will Need:

• Bachelor's degree in Computer Science, Computer Engineering, or a related engineering field with a minimum of 8 years of relevant experience OR Master's degree in Computer Science, Computer Engineering, or a related engineering field with a minimum of 7 years of relevant experience
• Candidate must have hands-on, professional coding experience, C/C++ or C# preferred
• Understanding of SDL/secure software development lifecycle practices
• Practical experience in software and security design principles
• Experience performing application-level threat modeling and code review
• Excellent interpersonal skills
• Excellent written and verbal communication skills
• Ability to clearly communicate technical information to a wide range of audiences
• Current knowledge of malware trends and current cybersecurity issues
• Experience with PKI/Certificates, Cryptography

Preferred Qualifications that Set You Apart:

• Current knowledge of trends in security specific to control systems
• Experience in the ICS or Automotive Industry
• Experience with other OT network technologies and Cloud
• Experience working with geographically distributed teams in a 100+ developer organization.
• Certifications such as CISSP, CEH, GSSP, GSEC, CSSLP, GIAC, ISA Cybersecurity, etc..

Job Type: Full-time

Pay: ₹2,000, ₹2,500,000.00 per year

Experience:

• Application Security engineer: 5 years (Preferred)

Location:

• Pune, Maharashtra (Required)

Work Location: In person