Senior Application Security Engineer

18 hours ago

Hyderabad, Telangana, India Photon Full time

Application Security Engineer (Senior Officer)

Reporting to the Global Head of Security, the Application Security Engineer plays a crucial role in leading our Application Security program, ensuring the highest level of security for our Engineering teams. The ideal candidate must have empathy for developers and intimately know the tools and workflows they use on a daily basis, while understanding the importance of communication, documentation, and taking accountability. The incumbent is an engineer who prioritizes addressing security challenges through technology and automation with a history of enabling developers with actionable security guidance. The candidate has experience with security code review, threat modeling or security architecture reviews, and can identify vulnerability paths explaining how they could be exploited while familiar with options for mitigation.

Responsibilities

  • Shift left" security efforts to build security into the software development lifecycle:
  • Conduct secure design reviews and threat modeling to identify and prioritize risks, attack surfaces, and vulnerabilities
  • Deploy and operationalize static (SAST), dynamic (DAST), dependency (SCA) and secrets scanning
  • Work with Platform DevOps team to build and maintain security automation tools to seamlessly embed inline security checks into CI/CD pipelines
  • Partner with Platform DevOps to help design secure-by-default architectures and workflows
  • Assist with application security code reviews of source code changes and advise developers on remediating vulnerabilities following secure coding practices
  • Establish and track SLA governance to ensure security findings are identified, prioritized, and remediated.
  • Maintain application asset inventory.
  • Lead the Security Champions Program to build security-minded culture amongst developers and IT Operations teams.
  • Act as a trusted advisor and partner for development and cross-functional project teams, providing actionable guidance to address security.
  • Help with training on secure coding practices, empowering teams to proactively prevent vulnerabilities.
  • Evaluate and implement security tools and automation solutions to enhance the security posture of applications and streamline security processes.

PROFILE

  • Bachelor's degree in Computer Science, Information Security, or related professional experience.
  • Have 3+ years of hands-on experience in application security, including securing cloud-based and containerized environments.
  • Experience performing secure code reviews and interpreting SAST/SCA/DAST results.
  • Strong experience with modern development workflows, including CI/CD pipelines, using Azure Pipelines and GitHub Actions.
  • Working knowledge of the OWASP Top 10 for web applications and APIs and how to apply the standard to minimize security risk.
  • In-depth understanding of vulnerabilities and secure coding practices.
  • Hands-on experience with security tools like Snyk, Veracode, Burpsuite or similar.
  • Familiarity with cloud platforms (AWS, Azure) and containerization (Docker, Kubernetes).
  • Proficiency in programming languages like Python, Java, or C# is preferred.
  • Have empathy, collaboration skills, and a learning mindset to work cross-functionally with engineers of all levels to build security into the product life cycle.
  • Possess broad security knowledge to connect the dots across domains and identify holistic ways to lower the overall threat surface.
  • Have the ability to distill complex security concepts into clear actions and drive consensus with minimum supervision.
  • Demonstrated success in partnering with developers to integrate security.

  • Senior Application Security Engineer

    2 weeks ago

    Hyderabad, Telangana, India, Telangana Photon Full time

    Application Security Engineer (Senior Officer)Reporting to the Global Head of Security, the Application Security Engineer plays a crucial role in leading our Application Security program, ensuring the highest level of security for our Engineering teams. The ideal candidate must have empathy for developers and intimately know the tools and workflows they use...

  • Senior Cyber Security Application Engineer

    3 days ago

    Hyderabad, Telangana, India Blackbaud Full time

    As a Senior Cyber Security Application Engineer, you will play a pivotal role in designing, implementing, and managing advanced security application solutions that enable application and security engineers to work more effectively to detect and resolve security issues. Your expertise will be crucial in automating processes related to vulnerabilities,...

  • Senior Cyber Security Application Security Engineer

    6 days ago

    Hyderabad, Telangana, India Blackbaud Full time

    We're hiring on the Blackbaud Application Security teamAs a member of the Cyber Security organization at Blackbaud, the Application Security Engineer is a specialized position that plays a key role in securing software built and/or used by Blackbaud. You can expect to work closely with software development teams as well as third-party organizations to ensure...

  • Senior Cyber Security Application Security Engineer

    6 days ago

    Hyderabad, Telangana, India Blackbaud Full time

    We're hiring on the Blackbaud Application Security teamAs a member of the Cyber Security organization at Blackbaud, the Application Security Engineer is a specialized position that plays a key role in securing software built and/or used by Blackbaud. You can expect to work closely with software development teams as well as third-party organizations to...

  • Senior Application Security Engineer

    1 week ago

    Hyderabad, Telangana, India Castellum Labs Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    The Company --Castellum Labs is a Next Gen Cyber Security Technology Venture that started in 2018, from Hyderabad, India with global ambitions, to change the cybersecurity service model. The company's vision is to change the cybersecurity value model in the industry. They use SaaS platforms, advanced lab infra in the cloud and a team of specialized experts...

  • Application Security Engineer

    6 days ago

    Hyderabad, Telangana, India Momentum Financial Services Group Full time

    Ideally, looking for a combination of Development and Application Security experience.Job Summary:We are seeking a skilled Application Security Engineer to join our Information Security team. The ideal candidate will have a minimum of 8-12 years of experience in application security and a strong background in software development, particularly in .NET, C#,...

  • Senior Application Security Analyst

    3 days ago

    Hyderabad, Telangana, India ADP Full time

    Lead/Senior Application Security AnalystJob description:This position will be responsible for• conducting hands-on security tests on web, mobile, premise based, mainframe based , citrix based applications & platforms to identify security vulnerabilities• responsible for assessing risk of the found vulnerabilities as per ADP standards and documenting them...

  • Senior IT Applications Engineer

    1 week ago

    Hyderabad, Telangana, India Careers Signant Health Full time

    Role OverviewSignant Health is seeking a Senior Applications Engineer to join our Enterprise Applications & Services Excellence (EASE) team. This role is ideal for an experienced professional who thrives on solving complex technical challenges and driving operational excellence across our enterprise application ecosystem.As a Senior Applications Engineer,...

  • Senior IT Applications Engineer

    6 days ago

    Hyderabad, Telangana, India Signant Health Full time

    Role OverviewSignant Health is seeking a Senior Applications Engineer to join our Enterprise Applications & Services Excellence (EASE) team. This role is ideal for an experienced professional who thrives on solving complex technical challenges and driving operational excellence across our enterprise application ecosystem.As a Senior Applications Engineer,...

  • Staff Engineer Application Security

    1 week ago

    Hyderabad, Telangana, India Appen Full time

    About AppenAppen is a leader in AI enablement for critical tasks such as model improvement, supervision, and evaluation. To do this we leverage our global crowd of over one million skilled contractors, speaking over 180 languages and dialects, representing 130 countries. In addition, we utilize the industry's most advanced AI-assisted data annotation...