Staff Application Security Engineer- DevSecOps/SAST/SCA

14 hours ago

Bangalore IND, India Zscaler Full time ₹ 12,00,000 - ₹ 36,00,000 per year

Our Engineering team built the world's largest cloud security platform from the ground up, and we keep building. With more than 100 patents and big plans for enhancing services and increasing our global footprint, the team has made us and our multitenant architecture today's cloud security leader, with more than 15 million users in 185 countries. Bring your vision and passion to our team of cloud architects, software engineers, security experts, and more who are enabling organizations worldwide to harness speed and agility with a cloud-first strategy.

We're looking for an experienced Staff Application Security Engineer for our Product Security team. Reporting to the Director of Vulnerability Management, you'll be responsible for:

  • Conducting thorough static and dynamic analysis of our applications to identify and remediate security vulnerabilities early in the development process (SAST/DAST)
  • Implementing SCA tools to identify and manage open-source components, ensuring that all third-party libraries and frameworks used in our codebase are secure and up-to-date (Software Composition Analysis)
  • Assessing and securing our containerized environments and IAC deployments, ensuring that security best practices are followed to protect our infrastructure from potential threats (Container and Infrastructure as Code Security)

What We're Looking for (Minimum Qualifications)

  • Expertise in DevSecOps, encompassing over 4 years of hands-on experience in deploying and overseeing security protocols like Static Application Security Testing (SAST), Software Composition Analysis (SCA), or Infrastructure as Code (IaC)
  • Proficiency with application security tools such as Snyk, Semgrep, Coverity, Checkmarx, Burp Suite, OWASP ZAP, and dependency management tools
  • Strong understanding of secure coding practices, vulnerability management, and remediation techniques with expertise in source control (Github, Bitbucket), and CI pipelines (ArgoCD, Jenkins)
  • Experience in identifying and addressing security vulnerabilities within codebases, ensuring prompt and efficient management throughout the CVE/CWE lifecycle

What Will Make You Stand Out (Preferred Qualifications)

  • Experience as a software developer or within a DevSecOps position, with proficiency in programming languages such as Java, Python, JavaScript, C/C++, and Golang
  • Extensive experience in Cloud Security, adept at securing cloud environments including AWS, Azure, and Google Cloud, with comprehensive knowledge of cloud-native security tools and methodologies

#LI-Hybrid

#LI-PM5

  • Sast, Dast

    1 week ago

    Maharashtra - Bangalore, Karnataka, India CIEL HR Full time

    Exp - 10 years Location - Mumbai Bangalore Hyderabad Chennai Pune Must have - Application Security - Security Analyst - SAST DAST DevSecOps Devops Notice - Immediate to 15 days SAST DAST DevSecOps P4 Position Application Security - Security Analyst - SAST DAST DevSecOps Primary Skills Expert in Dynamic Application Security Scan...

  • It Security Analyst Senior

    3 days ago

    Bangalore, Karnataka, India FIS Full time

    Position Type Full timeType Of Hire Experienced relevant combo of work and education Education Desired Bachelor of Computer ScienceTravel Percentage 0 As the world works and lives faster FIS is leading the way Our fintech solutions touch nearly every market company and person on the planet Our teams are inclusive and diverse Our colleagues work...

  • Staff Security Engineer

    1 week ago

    bangalore, India Ethos Full time

    About the Role:We're looking for a Staff Security Engineer with deep technical expertise in application security, penetration testing, and offensive security practices. You will lead efforts to proactively identify and exploit vulnerabilities across our products and infrastructure, working alongside engineering and security teams to design robust defences...

  • Cloud Security Engineer

    1 week ago

    bangalore, India Aquanow Full time

    Aquanow, a leading infrastructure and liquidity provider that provides institutional and enterprise application platforms for digital assets, is looking for a Cloud Security Engineer to join our technology team in Vancouver or Toronto. This is a unique opportunity to work alongside a highly-experienced team and contribute to the development of a high-growth...

  • Cybersecurity Professional

    2 weeks ago

    Hyderabad / Secunderabad, Telangana, Bengaluru / Bangalore, India beBeeApplication Full time US$ 90,000 - US$ 1,20,000

    Application Security ConsultantJoin a team of dedicated professionals who are passionate about ensuring the security and integrity of software applications.Education: Bachelor's degree required for this role.Security Expertise:We're looking for someone with deep familiarity with OWASP Top 10 and other security concerns for web applications.A deep...

  • Cybersecurity Professional

    1 week ago

    Hyderabad / Secunderabad, Telangana, Bengaluru / Bangalore, India beBeeSecurity Full time ₹ 15,00,000 - ₹ 25,00,000

    Job Title: Security EngineerWe are seeking a highly skilled and experienced Security Engineer to join our team.To be successful in this role, you will need to have extensive experience with application security testing using various tools and techniques.About the Role:This is an exciting opportunity for a motivated and detail-oriented individual who enjoys...

  • GCP Cloud Security Engineer

    1 week ago

    Bangalore, India Objectways Full time

    Job Description: GCP Cloud Security Engineer Location: Bangalore (Hybrid – 3 days in-office) Experience Required: 5+ years in cloud security, specifically with GCP Role Overview We are looking for a passionate GCP Cloud Security Engineer to enhance our Network Security and Technology Risk team in Bangalore. You will be central to securing our Google...

  • Application Security Manager

    5 days ago

    Bangalore (South), India Liminal Custody Full time

    About the Role:Liminal isseeking an experienced and technically strong Application Security Manager to lead and mature our application security program. The ideal candidate will have 7–10 years of relevant experience, a deep understanding of secure software development, and the ability to work independently while collaborating with cross-functional teams....

  • AWS Cloud Security Engineer

    1 week ago

    Bangalore, India Objectways Full time

    Job Title: AWS Cloud Security Engineer Location: Bangalore (Hybrid – 3 days in office) Experience Required: 5+ years Role Overview We are seeking a dedicated AWS Cloud Security Engineer to bolster our Network Security and Technology Risk team in Bangalore. In this position, you will be pivotal in securing our AWS cloud infrastructure,...

  • AWS Cloud Security Engineer

    2 days ago

    bangalore, India Objectways Full time

    Job Title: AWS Cloud Security EngineerLocation: Bangalore (Hybrid – 3 days in office)Experience Required: 5+ yearsRole OverviewWe are seeking a dedicated AWS Cloud Security Engineer to bolster our Network Security and Technology Risk team in Bangalore. In this position, you will be pivotal in securing our AWS cloud infrastructure, ensuring compliance,...