Senior Application Security Engineer

1 day ago

Hyderabad, Telangana, India Photon Full time ₹ 12,00,000 - ₹ 24,00,000 per year

Application Security Engineer (Senior Officer)

Reporting to the Global Head of Security, the Application Security Engineer plays a crucial role in leading our Application Security program, ensuring the highest level of security for our Engineering teams. The ideal candidate must have empathy for developers and intimately know the tools and workflows they use on a daily basis, while understanding the importance of communication, documentation, and taking accountability. The incumbent is an engineer who prioritizes addressing security challenges through technology and automation with a history of enabling developers with actionable security guidance. The candidate has experience with security code review, threat modeling or security architecture reviews, and can identify vulnerability paths explaining how they could be exploited while familiar with options for mitigation.

Responsibilities

  • Shift left" security efforts to build security into the software development lifecycle:
  • Conduct secure design reviews and threat modeling to identify and prioritize risks, attack surfaces, and vulnerabilities
  • Deploy and operationalize static (SAST), dynamic (DAST), dependency (SCA) and secrets scanning
  • Work with Platform DevOps team to build and maintain security automation tools to seamlessly embed inline security checks into CI/CD pipelines
  • Partner with Platform DevOps to help design secure-by-default architectures and workflows
  • Assist with application security code reviews of source code changes and advise developers on remediating vulnerabilities following secure coding practices
  • Establish and track SLA governance to ensure security findings are identified, prioritized, and remediated.
  • Maintain application asset inventory.
  • Lead the Security Champions Program to build security-minded culture amongst developers and IT Operations teams.
  • Act as a trusted advisor and partner for development and cross-functional project teams, providing actionable guidance to address security.
  • Help with training on secure coding practices, empowering teams to proactively prevent vulnerabilities.
  • Evaluate and implement security tools and automation solutions to enhance the security posture of applications and streamline security processes.

PROFILE

  • Bachelor's degree in Computer Science, Information Security, or related professional experience.
  • Have 3+ years of hands-on experience in application security, including securing cloud-based and containerized environments.
  • Experience performing secure code reviews and interpreting SAST/SCA/DAST results.
  • Strong experience with modern development workflows, including CI/CD pipelines, using Azure Pipelines and GitHub Actions.
  • Working knowledge of the OWASP Top 10 for web applications and APIs and how to apply the standard to minimize security risk.
  • In-depth understanding of vulnerabilities and secure coding practices.
  • Hands-on experience with security tools like Snyk, Veracode, Burpsuite or similar.
  • Familiarity with cloud platforms (AWS, Azure) and containerization (Docker, Kubernetes).
  • Proficiency in programming languages like Python, Java, or C# is preferred.
  • Have empathy, collaboration skills, and a learning mindset to work cross-functionally with engineers of all levels to build security into the product life cycle.
  • Possess broad security knowledge to connect the dots across domains and identify holistic ways to lower the overall threat surface.
  • Have the ability to distill complex security concepts into clear actions and drive consensus with minimum supervision.
  • Demonstrated success in partnering with developers to integrate security.

  • Senior Application Security Engineer

    2 weeks ago

    Hyderabad, Telangana, India Backbase Full time ₹ 20,00,000 - ₹ 25,00,000 per year

    The job in shortNo day at Backbase is the same, and even more so for our security engineers. We all know that security and banking need to go hand in hand and with hackers and tech evolving by the day, you'll need to stay on your toes and ahead of the game.Your core responsibility is to guide and support the developer teams in delivering and  deploying...

  • Senior Cyber Security Application Engineer

    3 days ago

    Hyderabad, Telangana, India Blackbaud Full time ₹ 12,00,000 - ₹ 24,00,000 per year

    As a Senior Cyber Security Application Engineer, you will play a pivotal role in designing, implementing, and managing advanced security application solutions that enable application and security engineers to work more effectively to detect and resolve security issues. Your expertise will be crucial in automating processes related to vulnerabilities,...

  • Senior Cyber Security Application Security Engineer

    7 days ago

    Hyderabad, Telangana, India Blackbaud Full time ₹ 15,00,000 - ₹ 30,00,000 per year

    We're hiring on the Blackbaud Application Security teamAs a member of the Cyber Security organization at Blackbaud, the Application Security Engineer is a specialized position that plays a key role in securing software built and/or used by Blackbaud. You can expect to work closely with software development teams as well as third-party organizations to ensure...

  • Senior Cyber Security Application Security Engineer

    6 days ago

    Hyderabad, Telangana, India Blackbaud Full time ₹ 12,00,000 - ₹ 24,00,000 per year

    We're hiring on the Blackbaud Application Security teamAs a member of the Cyber Security organization at Blackbaud, the Application Security Engineer is a specialized position that plays a key role in securing software built and/or used by Blackbaud. You can expect to work closely with software development teams as well as third-party organizations to...

  • Senior Application Security Engineer

    1 week ago

    Hyderabad, Telangana, India Castellum Labs Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    The Company --Castellum Labs is a Next Gen Cyber Security Technology Venture that started in 2018, from Hyderabad, India with global ambitions, to change the cybersecurity service model. The company's vision is to change the cybersecurity value model in the industry. They use SaaS platforms, advanced lab infra in the cloud and a team of specialized experts...

  • Senior Application Security Engineer

    1 week ago

    Hyderabad, Telangana, India MOURI Tech Full time ₹ 20,00,000 - ₹ 25,00,000 per year

    We are seeking a highly skilledDevSecOps Engineerwith a strong background inapplication security,penetration testing, andsecure development practices. The ideal candidate will bring hands-on experience inSAST,DAST,Kubernetes,CI/CD pipelines, and a solid understanding ofDevSecOps principles. You will work closely with engineering, DevOps, and security teams...

  • Application Security Engineer II

    2 weeks ago

    Hyderabad, Telangana, India Phenom Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    Job RequirementsWhat You'll DoResearch, identify and analyze and triage vulnerabilities that could affect Phenom ITX Platform and its supporting infrastructure, and determine its severity, exploitability and corrective action recommendations, summarizing and reporting results.Collaborate with engineering/development teams to evolve software assurance...

  • Senior Application Security Engineer

    2 weeks ago

    Hyderabad, Telangana, India Backbase Full time ₹ 20,00,000 - ₹ 25,00,000 per year

    The Job in shortBackbase has ushered in a new era of digital banking with the global launch of its AI-powered Banking Platform, recently lighting up Times Square. This milestone marks a bold step in reshaping the digital banking landscapeempowering banks to move beyond generative AI experiments and into full-scale execution. By automating critical operations...

  • Application Security Engineer

    3 days ago

    Hyderabad, Telangana, India Castellum Labs Full time ₹ 5,00,000 - ₹ 25,00,000 per year

    The Company --Castellum Labs is a Next Gen Cyber Security Technology Venture that started in 2018, from Hyderabad, India with global ambitions, to change the cybersecurity service model. The company's vision is to change the cybersecurity value model in the industry. They use SaaS platforms, advanced lab infra in the cloud and a team of specialized experts...

  • Application Security Engineer

    6 days ago

    Hyderabad, Telangana, India Momentum Financial Services Group Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    Ideally, looking for a combination of Development and Application Security experience.Job Summary:We are seeking a skilled Application Security Engineer to join our Information Security team. The ideal candidate will have a minimum of 8-12 years of experience in application security and a strong background in software development, particularly in .NET, C#,...