Senior Security Engineer
2 days ago
Job Tittle - Security Test Engineer
Job Type: Full-time
EXP 5+ Years
Location - Gurgaon
Roles & Responsibilities:
Perform Security Assessments: Conduct various types of security testing,
including:
1. Penetration Testing: Perform black-box, gray-box, and white-box penetration
testing on web applications, APIs, mobile applications (iOS/Android), and
network infrastructure.
2. Vulnerability Assessments: Utilize automated and manual techniques to
identify security weaknesses.
3. Static Application Security Testing (SAST): Analyze source code to identify
potential vulnerabilities.
4. Dynamic Application Security Testing (DAST): Test applications in a running
state and vulnerabilities.
5. Interactive Application Security Testing (IAST): Combine elements of SAST and
DAST for comprehensive testing.
6. Configuration Reviews: Assess the security posture of various systems and
applications.
7. Threat Modeling: Participate in threat modeling sessions to identify potential
attack vectors and vulnerabilities early in the development lifecycle.
8. Vulnerability Management:
Document identified vulnerabilities clearly and concisely, including steps to
reproduce, impact, and severity.
Communicate findings to development teams and stakeholders effectively.
Track and manage vulnerabilities through their lifecycle, from discovery to
remediation and retesting.
Provide guidance and recommendations to development teams on remediation
strategies.
9. Security Tooling & Automation:
- Utilize and configure security testing tools (e.g., Burp Suite, OWASP ZAP, Nessus,
Acunetix, Fortify, Checkmarx, Metasploit).
- Develop and implement automated security tests and scripts to improve efficiency.
- Stay up-to-date with the latest security testing tools, techniques, and best
practices.
10. Collaboration & Communication:
- Collaborate closely with development, DevOps, QA, and product teams to
integrate security into the SDLC (Secure SDLC).
- Educate and mentor developers on secure coding practices and common vulnerabilities.
- Participate in security code reviews.
- Present security findings and recommendations to technical and non-technical
audiences.
11. Research & Development:
- Stay informed about emerging security threats, attack vectors, and industry
trends.
- Contribute to the improvement of security testing methodologies and processes.
Participate in security community activities, conferences, and training.
Required Skills & Qualifications:
Education: Bachelor's degree in computer science, Information Security, or a
related field (or equivalent practical experience).Experience:
Mid-Level: 3-6 years of experience in security testing, penetration testing, or
application security.
Senior Level: 6+ years of experience in security testing, leading penetration
testing engagements and architecting secure solutions.
Technical Skills:
- Strong understanding of web application security vulnerabilities (e.g., OWASP
Top 10, SANS Top 25).
o Proficiency with security testing tools (e.g., Burp Suite, OWASP ZAP, Nmap,
Metasploit). - Experience with various operating systems (Linux, Windows).
- Familiarity with scripting languages (e.g., Python, Ruby, PowerShell, Bash).
Understanding of network protocols, firewalls, and intrusion
detection/prevention systems. - Knowledge of secure coding principles and common programming languages
(e.g., Java, Python, C#, JavaScript, ). - Experience with cloud security (AWS, Azure, GCP) is a strong plus.
Familiarity with CI/CD pipelines and integrating security into automated workflows.
Soft Skills:
- Excellent analytical and problem-solving skills.
- Strong communication and interpersonal skills, with the ability to explain complex technical concepts to non-technical audiences.
- Ability to work independently and as part of a team.
- High attention to detail and a methodical approach to testing.
- Curiosity and a strong desire to learn and stay current with security trends.
Desired Certifications (Plus, but not required):
OSCP
OSWE
CEH (Certified Ethical Hacker)
CompTIA Security+
SANS certifications (e.g., GWEB, GWAPT, GPEN)
CSSLP (Certified Secure Software Lifecycle Professional)
-
Deputy Manager – IT/IS
2 days ago
Gurgaon, Haryana, India Senior Full time ₹ 12,00,000 - ₹ 36,00,000 per yearCompany DescriptionSenior is a UK based MNC and has operations in 12 countries and has 26 operating businesses worldwide serving number of markets. Senior's experienced manpower support, effective use of raw material as well as high technology enable it to deliver optimized components within a short development time and at most competitive prices.Senior...
-
Senior Engineer, Application Security
2 days ago
Gurgaon, Haryana, India Cvent Full time ₹ 20,00,000 - ₹ 25,00,000 per yearJob Title- Senior Application Security EngineerShift- Hybrid (2 days a week)You are an experienced, hands-on Application Security Engineer who is passionate about building secure products, automating security workflows, and influencing development teams to embed security into the product development lifecycle. Whether you're ready to take ownership or...
-
Senior Application Security Engineer
2 days ago
Gurgaon, Haryana, India Cvent Full time ₹ 20,00,000 - ₹ 25,00,000 per yearOverviewYou are an experienced, hands-on Application Security Engineer who's passionate about building secure products, automating security workflows, and influencing development teams to embed security into the product development lifecycle. Whether you're ready to take ownership or growing your deep technical skills as aSenior Engineer, you're ready to...
-
Cyber Security Engineer
2 weeks ago
Gurgaon, Haryana, India Fluidech Full time ₹ 8,00,000 - ₹ 24,00,000 per yearTitle:Senior Engineer Cyber SecurityLocation:Onsite – Gurugram, Haryana, IndiaDuration:Full-Time RoleCompany: Fluidech IT Services Private LimitedCompany Overview:FLUIDECH, an ESCONET group company and a deemed public company, is a technology consulting and managed services firm specialising in cybersecurity.Founded in 2014 and headquartered in...
-
Senior Applications Security Manager
4 days ago
Gurgaon, Haryana, India DEUTSCHE TELEKOM DIGITAL LABS PRIVATE LIMITED Full time ₹ 20,00,000 - ₹ 25,00,000 per yearWe are seeking a highly skilled and experienced Senior Manager Application Security to lead our application security strategy, governance, and execution. This role will oversee secure software development practices, drive security reviews and testing, and partner with engineering teams to ensure security is embedded across the SDLC. The ideal candidate...
-
Security Engineer
2 days ago
Gurgaon, Haryana, India Steerlean Full time ₹ 6,00,000 - ₹ 12,00,000 per yearCloud Security Architecture : Asses, help in design and development of AWS, Azure and AWS security architectures for protecting PII/PCI data deployed into different types of cloud and cloud/hybrid systems. Improve the security around cloud-based applications, across all types (including Infrastructure, Platform, and Software as a Service (IaaS/PaaS/SaaS). ...
-
SOC Senior Engineer
7 hours ago
Gurgaon, Haryana, India Guardian Life Full time ₹ 12,00,000 - ₹ 36,00,000 per yearJob Description:Job Description SummaryProvide tier two operational support, leading team efforts in resolution of incidents and outages for information security technology and its dependencies on Public and Private Cloud computing environments, shared platforms, and operating systems for more than three of the following technologies:Ensuring team's...
-
Gurgaon, Haryana, India ChargePoint Full timeAbout UsWith electric vehicles expected to be nearly 30% of new vehicle sales by 2025 and more than 50% by 2040, electric mobility is becoming a reality. ChargePoint (NYSE: CHPT) is at the center of this revolution, powering one of the world's leading EV charging networks and a comprehensive set of hardware, software and mobile solutions for every charging...
-
Senior Palo Alto Firewall Security Engineer
4 days ago
Gurgaon, Haryana, India American Express Global Business Travel Full time ₹ 15,00,000 - ₹ 30,00,000 per yearAmex GBT is a place where colleagues find inspiration in travel as a force for good and – through their work – can make an impact on our industry. We're here to help our colleagues achieve success and offer an inclusive and collaborative culture where your voice is valued.We are seeking a highly skilled Senior Palo Alto Firewall Security...
-
Senior Network Engineer
3 hours ago
Gurgaon, Haryana, India Sify Technologies Limited. Full time ₹ 20,00,000 - ₹ 25,00,000 per yearCompany DescriptionSify Technologies Limited, a Fortune India 500 company, is India's most comprehensive ICT service and solution provider. With a focus on Cloud solutions, Sify caters to the evolving ICT needs of the emerging Digital economy for businesses of all sizes. The company operates 11 state-of-the-art Data Centers and has the largest MPLS network...