Senior Application Security Engineer
1 week ago
Role Overview
We are seeking a highly skilled Senior Application Security Engineer with deep expertise in application security, threat modeling, and secure design, particularly within the ServiceNow ecosystem. The ideal candidate will combine strong technical security knowledge with practical experience in enterprise application development and cloud environments.
This role requires hands-on work with threat modeling, secure architecture reviews, security testing, and automation, alongside close collaboration with engineering and leadership teams to strengthen security posture, reduce risk, and protect sensitive customer data.
Key Responsibilities
- Perform threat modeling, architecture reviews, and security design reviews for ServiceNow applications, APIs, and integrations.
- Conduct security assessments and penetration testing using SAST/DAST tools (e.g., Checkmarx, Veracode, Burp Suite, OWASP ZAP).
- Implement and maintain security testing automation within CI/CD pipelines.
- Analyze and remediate vulnerabilities, ensuring secure coding practices and compliance with security standards.
- Work hands-on with ServiceNow platform security architecture, configuration, and application development.
- Collaborate with developers, architects, and stakeholders to ensure secure integration and data protection across distributed systems.
- Provide technical guidance and mentorship to engineering teams on secure design principles and best practices.
- Communicate technical risk and mitigation strategies clearly to both technical and non-technical stakeholders.
- Support governance initiatives by aligning with industry security frameworks and compliance standards.
Required Qualifications
Experience & Expertise
- 6+ years of experience in application or cloud security engineering.
- Demonstrable expertise in threat modeling frameworks (STRIDE, PASTA, attack trees, etc.).
- Hands-on experience with SAST & DAST tools – setup, configuration, analysis, and remediation.
- Mandatory: Extensive, production-level ServiceNow platform experience – security architecture, administration, and application ecosystem.
- Strong troubleshooting & analytical skills in distributed systems security.
- Proficiency in JavaScript, Python, or scripting languages used in ServiceNow/web development.
- Deep understanding of:
- Authentication & Authorization protocols (OAuth, SAML, SSO)
- Secure API design & access controls
- Modern web application architecture & attack vectors
- Industry standards (OWASP, NIST, etc.)
- Exposure to secure CI/CD pipelines and integration of security tools into DevSecOps workflows.
Preferred Qualifications (Nice to Have)
- Industry certifications: CISSP, CEH, OSCP, CSSLP, or ServiceNow Certified Implementation Specialist.
- Experience conducting code and architecture reviews for SaaS or enterprise-scale systems.
- Familiarity with security governance & compliance frameworks (ISO 27001/2, SOC2, GDPR).
- Knowledge of cloud security (AWS, Azure, GCP) and hybrid architectures.
- Experience in incident response, forensics, or penetration testing.
- Knowledge of security monitoring, alerting, and SIEM integrations.
Job Type: Full-time
Work Location: Remote
-
Senior Application Security Engineer
5 days ago
Remote - India Twilio Full time ₹ 15,00,000 - ₹ 25,00,000 per yearSee yourself at Twilio Join the team as Twilio's next Senior Application Security Engineer(L3). About the job The Cloud and Application Security team enables delivery of secure by default products to reduce our attack surface against an evolving threat landscape. This position is needed to enhance Twilio's Application Security capabilities to improve...
-
Senior Security Engineer
3 days ago
Remote, India Certify Full time US$ 1,20,000 - US$ 1,80,000 per yearAbout Certify:At CertifyOS, we're building the infrastructure that powers the next generation of provider data products, making healthcare more efficient, accessible, and innovative. Our platform is the ultimate source of truth for provider data, offering unparalleled ease and trust while making data easily accessible and actionable for the entire healthcare...
-
Remote, India Ocrolus Full time ₹ 7,00,000 - ₹ 12,00,000 per yearCome build at the intersection of AI and fintech. At Ocrolus, we're on a mission to help lenders automate workflows with confidence—streamlining how financial institutions evaluate borrowers and enabling faster, more accurate lending decisions.Our AI-powered data and analytics platform is trusted at scale, processing nearly one million credit applications...
-
Cyber Security Engineer
2 weeks ago
Remote, India QuantumBricks Inc Full timeJob Title: Senior Cyber Security Engineer (Remote)Location: Remote (Global / Flexible Work Hours)Employment Type: Full-TimeExperience Level: Senior (7+ Years)About the RoleWe are looking for an experienced Senior Cyber Security Engineer to lead the design, implementation, and continuous improvement of our enterprise security architecture. The ideal candidate...
-
Remote, India Cloud Software Group Full time ₹ 1,50,00,000 - ₹ 2,50,00,000 per yearThe Senior Director of Engineering will be accountable for the following strategic and organizational outcomes:Engineering Vision & Strategy: Define and relentlessly communicate a multi-year, strategic engineering roadmap for the Integration Team that aligns directly with the company's long-term business goals. Accountable for technology choices,...
-
Senior Cloud Engineer
5 days ago
Remote, India Jobbycart technologies private limited Full time ₹ 9,00,000 - ₹ 12,00,000 per yearJob Summary:The Senior Cloud Engineer will lead the design, implementation, and management of advanced cloud infrastructure. This role focuses on building scalable, secure, and cost-effective cloud solutions for financial services applications. The ideal candidate will be an expert in cloud services and have a proven track record of leading cloud engineering...
-
Senior Network Engineer, Security
2 weeks ago
Remote, India Pythian Full timeJob Description Senior Network Engineer Any where in India | Remote | | Security ( Cisco ASA/ FTD) and SDWAN expertise At Pythian, we are experts in strategic database and analytics services, driving digital transformation and operational excellence. Pythian, a multinational company, was founded in 1997 and started by ensuring the reliability and performance...
-
Product Security Engineer
1 week ago
Remote, India Sun King Full time ₹ 12,00,000 - ₹ 36,00,000 per yearDescriptionJob location: Remote in India About the role:In this role, your principal mission will be to drive security-related engineering engagement and technical remediation across Sun King's product lines. You will work across application security, architecture reviews, and cloud security to scale security engagement across Engineering. As a Product...
-
Network Security Engineer
1 day ago
Remote, India Rosemallow technologies Full time ₹ 18,00,000 - ₹ 22,00,000 per yearThe Cyber & Information Senior Engineer will report directly to the Director of Cyber & Information Security. In this position you will have the opportunity to contribute to and lead initiatives related to Network security, system security architecture and engineering, and security automation. The Sr. Engineer will partner with business units as a subject...
-
Full-Stack Mobile Engineer
7 days ago
Remote, India A2A security Full time ₹ 2,40,000 - ₹ 4,80,000 per yearFull-Stack Mobile Engineer (Flutter + Laravel) — Remote (India)Company: A2A Security Agency Inc.Location: Remote (India) — preference for candidates in Surat, GujaratWho we areA2A Security Agency Inc. provides guard and concierge services across North America. We're scaling a suite of digital tools that streamline scheduling, field reporting, and...
