Sr Application security Engineer-DevSecops
1 week ago
Role & responsibilities
Preferred candidate profile
Conduct regular security assessments (SAST/SCA/DAST) utilizing both automated and manual methods to identify security vulnerabilities
- Responsible for assessing the risk of the found vulnerabilities as per Broadridge Security Standards and documenting them with proper proof of concepts, as necessary
- Perform security design and architectural reviews for new and existing applications to ensure they meet security standards and best practices.
- Collaborate with technical teams and business stakeholders to provide expert advice on vulnerability remediation strategies and best practices.
- Assess risks reported in the vulnerability assessment results and other security related data, and prioritize remediation actions
- Integrate security practices into the CI/CD pipeline to identify and address vulnerabilities early in the development cycle and maintain the tooling in the CICD pipeline
- Conduct regular security group reviews.
- Identify and implement automation opportunities within security testing and review processes to enhance efficiency and effectiveness.
- Awareness of working and adapting to Agile environment
Skill Requirements:
- A bachelors or higher degree in Computer Science, Computer Engineering, or similar discipline.
- Minimum 6 years of hands-on experience in application security and 2 years in DevSecOps, and extensive knowledge in any one of the object-oriented programming languages.
- Strong Information Security technical skills and knowledge to identify, research and understand security control gaps and program compliance issues
- Strong web application security experience with thorough understanding of web application vulnerabilities and secure coding practices
- Demonstrated experience in performing threat modeling, security architecture review, and vulnerability assessment on applications and infrastructure
- Deep understanding of OWASP methodologies for web, API, mobile, CI/CD, and LLM.
- Knowledge in Cloud(AWS, Azure) Architecture
- Familiarity with CI/CD tools (e.g., Jenkins, GitLab CI) and their integration with security tools.
- Understanding of Security Policies, Procedures, Audit, and Compliance requirements
- Skills in Terraform/Chef/Python/Perl/Ruby is desired
- Superior ability to effectively communicate security concepts, threats, controls, and mitigation/remediation to application teams and audiences not familiar with such topics
Soft Skills:
- Excellent communication and presentation skills
- Ability to work collaboratively and build consensus is essential
- Ability to manage multiple priorities effectively.
- Strong analytical and problem-solving skills with attention to detail.
- Willingness and capability to self-learn
Good to Have:
- Experience in conducting infrastructure vulnerability scans, analysis of scan results, and vulnerability triage.
- Experience in assessing and enhancing security of cloud-based environments and services.
- Experience in AWS security involving tools and process
- Experience in container/Kubernetes security
- Active participation in the security communities and groups
- Demonstrated commitment to staying up to date with emerging security threats and technologies.
- Hold at least one applicable industry certification; CEH, CISSP, OSCP, CISM, Cloud Security etc.
-
Sr. DevSecOps Engineer
4 days ago
Bengaluru, Karnataka, India CSC Full time ₹ 12,00,000 - ₹ 36,00,000 per yearRole: Sr. DevSecOps EngineerLocation: BangaloreWorking Hours: 12-9PMWorking Model: HybridIntro: As a DevSecOps engineer, you will provide technical leadership in the DevSecOps areas of Vulnerability Scanning, Certificate Management, Password Policy Management, Infrastructure As code for Cloud Resource Provisioning, Data Analysis of security monitoring...
-
DevSecOps Sr. Engineer
2 days ago
Bengaluru, Karnataka, India CRUTZ LEELA ENTERPRISES Full time ₹ 5,00,000 - ₹ 25,00,000 per yearPosition-DevSecOps Sr. EngineerShift Timings-Afternoon 2 PM to 12 ISTNo. of Position-1Mode-FTENotice period-ImmediateMode of Interview-MS TeamsYear of Experience- 8 – 10 yearsWe are seeking a highly skilled Security Automation Engineer with expertise in SOAR platforms (XSIAM, QRadar, and others), strong scripting capabilities, and hands-on experience in...
-
DevSecOps Engineer
2 days ago
Bengaluru, Karnataka, India Grayson Talent Full time ₹ 15,00,000 - ₹ 25,00,000 per yearWe are seeking a skilled DevSecOps Engineer to integrate security practices within our DevOps processes and ensure that our systems, applications, and infrastructure are built and maintained with security at the core. The ideal candidate will have strong experience in DevOps practices, cloud infrastructure, CI/CD pipelines, and security frameworks, with the...
-
Devsecops Engineer
4 days ago
Bengaluru, Karnataka, India Uplers Full time ₹ 20,00,000 - ₹ 25,00,000 per yearSr. Cloud Security Engineer (Devsecops)Experience: Years ExpSalary : CompetitivePreferred Notice Period: Within 45 DaysOpportunity Type: RemotePlacement Type: Permanent(*Note: This is a requirement for one of Uplers' Clients)Must have skills :ISO 27001 OR SOC 2 OR GDPR, Remediation OR vulnerabilities AND cloud, Cloud Security Posture Management,...
-
Security Engineer, DevSecOps
2 days ago
Bengaluru, Karnataka, India JumpCloud Full timeAll roles at JumpCloud are Remote unless otherwise specified in the Job Description.About JumpCloudJumpCloud delivers a unified open directory platform that makes it easy to securely manage identities, devices, and access across your organization. With JumpCloud, IT teams and MSPs enable users to work securely from anywhere and manage their Windows, Apple,...
-
DevSecOps Engineer
3 days ago
Bengaluru, Karnataka, India Mentorpal Tech Hiring Full time ₹ 15,00,000 - ₹ 25,00,000 per yearJob Description : DevSecOps EngineerLocation : BangalorePosition Type : Full-timeWork Experience : 2-5 YearsPosition OverviewWe are looking for a DevSecOps Engineer (2-5 years experience) to join our engineering team at Belong.The role involves embedding security into our cloud-native infrastructure, CI/CD pipelines, and application lifecycle. You will work...
-
Sr. Development Security Operations Engineer
2 days ago
Bengaluru, Karnataka, India CSC Full time ₹ 12,00,000 - ₹ 36,00,000 per yearRole: Sr. Development Security Operations EngineerLocation: BangaloreWorking Hours: 12-9PMWorking Model: HybridIntro:As a DevSecOps engineer, you will provide technical leadership in the DevSecOps areas of Vulnerability Scanning, Certificate Management, Password Policy Management, Infrastructure As code for Cloud Resource Provisioning, Data Analysis of...
-
DevSecOps Engineer
3 days ago
Bengaluru, Karnataka, India Mentorpal Tech Hiring Full time ₹ 6,00,000 - ₹ 18,00,000 per yearJob Description : DevSecOps EngineerLocation : BangalorePosition Type : Full-timeWork Experience : 2-5 YearsPosition Overview : We are looking for a DevSecOps Engineer (2-5 years experience) to join our engineering team at Belong The role involves embedding security into our cloud-native infrastructure, CI/CD pipelines, and application lifecycle. You will...
-
Bengaluru, Karnataka, India Black Duck Full time ₹ 12,00,000 - ₹ 36,00,000 per yearBlack Duck Software, Inc. helps organizations build secure, high-quality software, minimizing risks while maximizing speed and productivity. Black Duck, a recognized pioneer in application security, provides SAST, SCA, and DAST solutions that enable teams to quickly find and fix vulnerabilities and defects in proprietary code, open source components, and...
-
Security Engineer II
7 days ago
Bengaluru, Karnataka, India Safe Security Full time ₹ 12,00,000 - ₹ 36,00,000 per yearAt SAFE Security, our mission is bold and ambitious: We Will Build CyberAGI — a super-specialized system of intelligence that autonomously predicts, detects, and remediates threats. This isn't just a vision—it's the future we're building every day, with the best minds in AI, cybersecurity, and risk. At SAFE, we empower individuals and teams with the...
