Application Security Engineer
11 hours ago
Job Description: Application Security Engineer (L2)
Role Overview
We are seeking an experienced Application Security Engineer (L2) to take a lead role in our security testing team. This role requires of 3 year experience (first priority will be given to more than 4 year experience resources for selection) and mandates professional security certifications. You will be responsible for conducting advanced application security assessments, mentoring junior members, and working closely with development and leadership teams to embed security across the SDLC.
Key Responsibilities
• Lead penetration testing and in-depth security assessments for web, mobile, API, and thick client applications.
• Perform manual testing alongside automated assessments to uncover complex vulnerabilities.
• Conduct threat modeling and provide secure design input during the application lifecycle.
• Mentor and guide L1 engineers, reviewing their work and sharing best practices.
• Collaborate with developers, architects, and DevSecOps teams to implement security controls.
• Prepare executive-level risk-based reports and remediation strategies.
• Perform vulnerability assessments and penetration tests for web, mobile, API, and thick client applications.
• Identify and document application flaws, misconfigurations, and business logic issues.
• Assist in providing remediation guidance to developers and stakeholders.
• Prepare security testing reports and maintain accurate documentation.
• Stay updated with evolving security threats, tools, and methodologies.
Required Skills
• In-depth expertise with OWASP Top 10, API Security Top 10, and mobile security standards (OWASP MSTG).
• Advanced knowledge of tools like Burp Suite Pro, Frida, Drozer, Objection, Postman, and SQLMap.
• Strong technical understanding of authentication, API security, session management, and cryptographic practices.
• Experience with cloud security concepts (AWS, Azure, GCP) in relation to application hosting.
• Scripting and automation skills in Python, Bash, or PowerShell.
• Excellent communication for both technical and executive-level reporting.
Certifications (Mandatory)
• At least one recognized security certification such as , CEH, GPEN, or CRTP are mandatory. Preferred OSCP, OSCE, CRTO etc.
Preferred Qualifications
• Bachelor's or Master's in Computer Science, Cybersecurity, or related field.
• Experience in red teaming and advanced exploit development for applications.
-
Application Security Engineer
2 weeks ago
Mumbai, Maharashtra, India Strategy Full timeJob Location : Pune, IndiaFull-time in person from Strategy Office a minimum of 4 days per weekJob Description :Join Strategys IT Security group as an Application Security Engineer and play a crucial role in safeguarding Strategys software applications while using modern security and AI tooling.In this position, you will be responsible for integrating...
-
Application Security Engineer
3 weeks ago
Mumbai, Maharashtra, India Lxme Full timeAbout Us:At LXME, we're building India's first full-stack financial platform designed exclusively for women. Trust, security, and reliability are at the heart of our mission to empower millions of women to confidently save, manage, and invest their money. As we scale, we're looking for an App Security Engineer to lead our application security efforts across...
-
Application Security Engineer
2 weeks ago
Mumbai, Maharashtra, India Leaders Access Full time ₹ 9,00,000 - ₹ 12,00,000 per yearRole Summary:We are looking for an experienced and technically skilled Application Security Engineer to strengthen our cybersecurity posture. The ideal candidate should possess a solid understanding of application-level vulnerabilities, secure code practices, and vulnerability management tools. You will be responsible for conducting in-depth assessments,...
-
Applications Security Engineer
2 weeks ago
Mumbai, Maharashtra, India Employee Forums Full timeRole Summary : We are looking for an experienced and technically skilled Application Security Engineer to strengthen our cybersecurity posture. The ideal candidate should possess a solid understanding of application-level vulnerabilities, secure code practices, and vulnerability management tools. You will be responsible for conducting in-depth assessments,...
-
Senior Security Engineer
2 weeks ago
Navi Mumbai, Maharashtra, India Eventus Security Full time ₹ 9,00,000 - ₹ 12,00,000 per yearJob Summary : We are seeking a highly motivated and experienced Senior Security Engineer to join our dynamic team. The ideal candidate will possess a strong background in server, data center, and endpoint security, with a specialized focus on Trend Micro products. This role requires a proactive individual capable of providing L2 support, conducting product...
-
Security Researcher
2 weeks ago
Mumbai, Maharashtra, India Security Brigade Full time US$ 80,000 - US$ 1,20,000 per yearJob DescriptionSecurity Brigade is looking for a Security Researcher who will be working with ShadowMap tool which is an internal security tool & manage on-site clients for long-term.Objective of this RoleAnalyze attack surface management tool which contains web & mobile application alerts, data leaks, dark web & exposed code repositories.Assist clients by...
-
Senior Security Engineer
2 weeks ago
Navi Mumbai, Maharashtra, India Eventus Security Full time ₹ 9,00,000 - ₹ 12,00,000 per yearJob Title: Senior Security EngineerJob Location: Navi MumbaiExperience: 3+yrsKey Responsibilities:Provide Tier 1 and Tier 2 technical support for Trend Micro products, including but not limited to:Trend Micro Apex One and Vision One.Deep Security and Vision One Pro.Cloud App Security and Email Security for Exchange.DDI/DDAN/Tipping Point/SMS/DDEI...
-
Senior Security Engineer
2 weeks ago
Navi Mumbai, Maharashtra, India Eventus Security Full timeJob Title: Senior Security Engineer Job Location: Navi Mumbai Experience: 3+yrs Key Responsibilities: Provide Tier 1 and Tier 2 technical support for Trend Micro products, including but not limited to: Trend Micro Apex One and Vision One. Deep Security and Vision One Pro. Cloud App Security and Email Security for Exchange. DDI/DDAN/Tipping Point/SMS/DDEI...
-
Application Security
3 weeks ago
Mumbai, Maharashtra, India ServQual Full timeCompany DescriptionServQual Security specializes in Cyber Security Discovery Workshops, Enterprise Security Transformations, and GRC automation through our AI-powered platform, SUSAN. SUSAN is designed to bridge the gap between cybersecurity leadership and engineering teams, enabling continuous GRC, automated risk assessments, and real-time control...
-
Application Security
2 weeks ago
Mumbai, Maharashtra, India ServQual Full timeCompany Description Serv Qual Security specializes in Cyber Security Discovery Workshops, Enterprise Security Transformations, and GRC automation through our AI-powered platform, SUSAN.SUSAN is designed to bridge the gap between cybersecurity leadership and engineering teams, enabling continuous GRC, automated risk assessments, and real-time control...
