Cybersecurity Application Security Consultant

2 days ago

Mumbai, Maharashtra, India Digital Defense Full time ₹ 50,000 - ₹ 28,00,000 per year

Company:

Digital Defense 

Position Type:

Permanent

Location:

Mumbai

Salary:

₹50,000 INR per month

About the Role

Digital Defense is seeking a highly motivated and skilled Cybersecurity Application Security Consultant with expertise in DevSecOps practices to join our growing team in Mumbai. This is a permanent position where you will play a crucial role in integrating security into every phase of the Software Development Life Cycle (SDLC), from design to deployment and operations. You will work closely with development, operations, and QA teams to ensure our applications are secure by design and by default.

Key Responsibilities

  • Security Integration:
     Integrate security tools and processes into CI/CD pipelines (DevSecOps) to automate security testing, vulnerability scanning, and compliance checks.
  • Application Security Testing:
     Conduct various application security tests, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Interactive Application Security Testing (IAST), and Software Composition Analysis (SCA).
  • Vulnerability Management:
     Identify, analyze, and prioritize security vulnerabilities in applications and provide actionable recommendations for remediation.
  • Security Architecture Review:
     Participate in the design and architecture reviews of new and existing applications to identify potential security risks and recommend secure design patterns.
  • Threat Modeling:
     Perform threat modeling exercises to identify potential threats and vulnerabilities early in the development lifecycle.
  • Security Best Practices:
     Advocate for and implement secure coding guidelines, industry standards (e.g., OWASP Top 10, SANS Top 25), and security best practices within development teams.
  • Security Training & Awareness:
     Provide guidance and training to development teams on secure coding practices and application security principles.
  • Incident Response Support:
     Assist in the investigation and resolution of application security incidents.
  • Documentation:
     Maintain comprehensive documentation of security findings, remediation efforts, and security policies.

Required Skills and Qualifications

  • Education:
     Bachelor's degree or Engineer in Computer Science, Information Technology, Cybersecurity, or a related field.
  • Experience:
     Proven experience (e.g., 3+ years) in application security, with a strong focus on DevSecOps principles and practices.
  • Development Experience:
     Practical experience in software development, understanding the full development lifecycle.
  • Technical Proficiency:
  • Strong understanding of web application security vulnerabilities (OWASP Top 10) and secure coding practices.
  • Experience with security testing tools (e.g., Burp Suite, OWASP ZAP, Nessus, SonarQube, Checkmarx, Fortify).
  • Familiarity with CI/CD tools (e.g., Jenkins, GitLab CI/CD, Azure DevOps, GitHub Actions, samgrep, open grep).
  • Proficiency in at least one scripting language (e.g., Python, Bash) for automation.
  • Understanding of cloud security principles (AWS, Azure, GCP) is a plus.
  • Knowledge of containerisation technologies (Docker, Kubernetes) and their security implications.
  • DevSecOps Mindset:
     A strong understanding of how to embed security into agile and DevOps methodologies.
  • Communication:
     Excellent written and verbal communication skills, with the ability to explain complex security concepts to technical and non-technical stakeholders.
  • Problem-Solving:
     Strong analytical and problem-solving skills with a keen eye for detail.

Preferred Qualifications

  • Engineering in Computer Science or Cybersecurity
  • Relevant industry certifications, including CEH, OSCP, Offensive Security Web Application certifications.
  • Experience with security frameworks and compliance standards (e.g., ISO 27001, NIST, GDPR).
  • Familiarity with various programming languages (e.g., Java, .NET, Python, ).

How to Apply

Interested candidates can apply by sending their updated resume to

with the subject line
"Application for

Cybersecurity Application Security Consultant - DevSecOps

  • Cyber Security Consultant

    3 days ago

    Mumbai, Maharashtra, India DarkNext Cybersecurity Full time US$ 90,000 - US$ 1,20,000 per year

    Company DescriptionDarkNext Cybersecurity is an enterprise-focused cybersecurity company based in Mumbai, India. We specialize in Application Security Audits, Vulnerability and Penetration Testing, Wireless Security, Information Security Reviews, and more. Our team is dedicated to helping clients achieve business success through Performance, Persistence, and...

  • Freelance Cybersecurity Sales Consultant

    3 days ago

    Mumbai, Maharashtra, India Digisecuritas Cybersecurity Full time US$ 60,000 - US$ 1,20,000 per year

    Looking for freelance partner consultants to promote our cybersecurity audit & consultancies services for various industries globally.

  • Security Consultant

    1 week ago

    Navi Mumbai, Maharashtra, India Eventus Security Full time

    Job Title: Security ConsultantExperience range: 1-3 yearsJob Location: Navi Mumbai / DelhiImmediate Joiners PreferredWe are seeking a motivated and technically proficient Security Consultant to join our cybersecurity team. The ideal candidate should have hands-on experience in Vulnerability Assessment and Penetration Testing (VA/PT) across web...

  • Security Consultant

    3 days ago

    Navi Mumbai, Maharashtra, India Eventus Security Full time ₹ 6,00,000 - ₹ 10,00,000 per year

    Job Title: Security ConsultantExperience range: 1-3 yearsJob Location: Navi Mumbai / DelhiImmediate Joiners PreferredWe are seeking a motivated and technically proficientSecurity Consultantto join our cybersecurity team. The ideal candidate should have hands-on experience inVulnerability Assessment and Penetration Testing (VA/PT)across web applications,...

  • Security Consultant

    6 days ago

    Navi Mumbai, Maharashtra, India Eventus Security Full time

    Job Title: Security Consultant Experience range: 1-3 years Job Location: Navi Mumbai / Delhi Immediate Joiners Preferred We are seeking a motivated and technically proficient Security Consultant to join our cybersecurity team. The ideal candidate should have hands-on experience in Vulnerability Assessment and Penetration Testing (VA/PT) across web...

  • PreSales Security Consultant Cybersecurity

    3 days ago

    Mumbai, Maharashtra, India People Equation Full time ₹ 15,00,000 - ₹ 20,00,000 per year

    Job Description - Pre-Sales Security Consultant CybersecurityWe're building more than a cybersecurity product — we're creating and leading the category of Continuous Automated Red Teaming (CART) and Automated Pen Testing. Our AI-based platform emulates real-world attacks across enterprise environments to proactively discover and prioritize exposures —...

  • Head of Cybersecurity – India Business

    20 hours ago

    Mumbai, Maharashtra, India NuSummit Cybersecurity Full time ₹ 1,04,000 - ₹ 1,30,878 per year

    Key Responsibilities & Strategic Impact Areas:Business Leadership & Strategy.Define and execute the India Cybersecurity growth strategy aligned to company objectives.Own full P&L responsibility for the Cybersecurity India business.Drive revenue growth across new client acquisition, existing account expansion, andpartnerships.Own the India cybersecurity...

  • Senior Cybersecurity Consultant

    3 days ago

    Mumbai, Maharashtra, India Globesecure Technologies Full time ₹ 15,00,000 - ₹ 20,00,000 per year

    Position: Senior Security Consultant - CybersecurityExperience: 5+ YearsLocation: India (with 56 months overseas assignment)Availability: Immediate Joiners PreferredRole OverviewWe are seeking a highly skilled Senior Security Consultant with extensive experience in cybersecurity assessments, secure development lifecycle (SDLC), cloud security, and enterprise...

  • IT Application Cybersecurity Manager

    3 days ago

    Mumbai, Maharashtra, India Polycab Full time ₹ 1,04,000 - ₹ 1,30,878 per year

    Job Title: IT Application Cybersecurity ManagerLocation: HO, Mumbai, IndiaDepartment: CybersecurityReports To: Chief Information Security Officer (CISO)Working Days: WFO 6 days (Off on the 2nd and 4th Saturdays)Job Summary: We are seeking an experienced IT Application Cybersecurity Manager to lead our cybersecurity efforts focused on application security...

  • TVM Consultant

    21 hours ago

    Mumbai, Maharashtra, India NMS Consultant Full time ₹ 1,04,000 - ₹ 1,30,878 per year

    We are looking for an enthusiastic TVM (Threat and Vulnerability Management) Consultant/Analyst to join our cybersecurity team. The role involves performing application security assessments of Web, Mobile, and API applications as per defined scope and standards. The candidate will work on identifying, analyzing, and reporting vulnerabilities using SAST,...