Application Security Engineer
2 weeks ago
About Us
We are a leading global financial technology company transforming how the securities finance industry trades, settles, and analyzes data. Our award-winning Trading, Post-Trade, Data & Analytics, RegTech, and SaaS solutions power efficiency, transparency, and innovation for over 200 of the world's top financial institutions. Every month, our platform supports over $2.4 trillion in executed transactions, a testament to our technology's impact and reliability.
With offices across North America, UK&I, and APAC, we bring together diverse teams of technologists, data experts, and business professionals who thrive on solving complex challenges at scale. We are Great Place to Work Certified in the US, UK, Ireland, and India and have been recognized for Diversity & Inclusion excellence as well as for being the Best Post-Trade Service Provider and Best Market Data Provider Globally (Securities Finance Times Industry Excellence Awards, 2023).
Founded in 2001 by ten of the world's leading financial institutions, we continue to shape the future of securities finance under the majority ownership of Welsh, Carson, Anderson & Stowe (WCAS) alongside founding shareholders and customers including Bank of America, Bank of New York, BlackRock, Goldman Sachs, Morgan Stanley, National Bank of Canada, State Street, UBS and Wells Fargo.
Join us and be part of a company where global impact, innovation, and collaboration define how we work and what we build.
About the role
We are looking for an Application Security Engineer to join us in our Bangalore office. In this role, you will help strengthen our security posture across our entire product suite.
You will be part of a collaborative and growing security team, ensuring our applications are designed, built, and deployed securely from the ground up. Working closely with our Development, DevOps, QA, and Cloud Security teams, you will embed security into every phase of our Software Development Lifecycle (SDLC) and contribute directly to EquiLend's Attack Surface Management (ASM) initiatives.
This is an excellent opportunity to have a meaningful impact in a global technology-driven financial organization.
What you'll do
Operate and manage our BlackDuck platforms for Static Application Security Testing (SAST) and Software Composition Analysis (SCA) to assess code quality and open-source component risks.Configure and execute Rapid7 InsightAppSec Dynamic Application Security Testing (DAST) scans; validate findings, prioritize risks, and support remediation with development teams.Integrate security tools into CI/CD pipelines (GitHub, Jenkins, Terraform, Kubernetes) to enable continuous and automated security testing.Support the creation and maintenance of secure coding guidelines, threat models, and application security standards.Conduct targeted penetration testing and manual validation of vulnerabilities identified by automated tools.Contribute to our Attack Surface Management program by identifying and reducing exposed assets and risks.Collaborate with DevOps and Infrastructure teams to ensure secure configuration baselines and timely remediation of identified vulnerabilities.Track and report application security metrics, including vulnerability trends and remediation timelines.Deliver security awareness sessions and hands-on guidance to developers, focusing on common vulnerabilities such as those in the OWASP Top 10.What we're looking for
3-5 years of experience in application security, vulnerability management, or a related discipline.Hands-on experience with SAST, SCA, and DAST tools such as BlackDuck, Rapid7 InsightAppSec, SonarQube, Veracode, or Burp Suite.Strong understanding of web and cloud application architectures, including Java, .NET, Python, REST APIs, microservices, Kubernetes, and AWS.Familiarity with secure SDLC practices and integration of security within DevSecOps workflows.Sound knowledge of OWASP Top 10, CWE/SANS Top 25, and common application security flaws.Strong communication and collaboration skills, with the ability to influence secure development practices across teams.Experience with penetration testing or ASM platforms is beneficial.Cloud security knowledge (AWS security services, IAM, container security) is a plus.Certifications such as OSWE, GWAPT, GCSA, or equivalent are desirable.Bachelor's degree in Computer Science, Information Security, or a related field.Benefits
Variable Pay: Annual performance related variable pay award on top of your fixed CTC to reward your performance and contributions to the company's success.Hybrid Working: Our hybrid work policy requires all employees to work from the office approximately 3 days per week (50 work from home days per 6 months annually).Generous Vacation Days Per Year: Take advantage of paid vacation days annually, plus public bank holidays.Family Health Insurance Coverage: Comprehensive health insurance coverage for you and your dependents available from your first day.Personal Accidental Injury Insurance: Feel secure with personal accidental injury insurance provided from the start of your employment.Annual Team Building Retreat: Participate in an annual team-building retreat at a new and exciting location each yearRelocation Assistance: If you're relocating from more than 40 miles away, we provide hotel accommodation and travel ticket reimbursement to help ensure a smooth transition.Diversity & Inclusion
At EquiLend, we are committed to fostering an inclusive and diverse workplace where everyone is respected and valued. We believe that a variety of perspectives drives innovation and strengthens our success. If you require any reasonable accommodations during the interview process, please let us know - we're here to support you.
#LI-Hybrid
-
Application Security Engineer
11 hours ago
Bengaluru, Karnataka, India Allen Online Full time ₹ 12,00,000 - ₹ 36,00,000 per yearJob Title: Staff Engineer - Application SecurityWe are seeking a highly experienced Principal Engineer in Application Security to join our team. The ideal candidate will play a critical role in ensuring our applications are secure and comply with the Indian Data Protection and Privacy (DPDP) laws. This position requires a deep understanding of application...
-
Application Security Engineer
2 weeks ago
Bengaluru, Karnataka, India Step One Step Ahead Llp Full time ₹ 2,16,000 - ₹ 7,20,000 per yearWere hiring a Application Security Test Engineer with 2-3 years of experience in Application Security, SAST, and SCA tools like Snyk, SonarQube, or Checkmarx. Integrate security into CI/CD, manage vulnerabilities, and support teams in secure coding.
-
Application Security Engineer
7 days ago
Bengaluru, Karnataka, India ALLEN Digital Full time ₹ 12,00,000 - ₹ 36,00,000 per yearAbout ALLEN Digital:At ALLEN Digital, we spearhead a technology-driven approach to education, leveraging top-tier tech talent from leading technology firms. Through our strategic collaboration with Bodhi Tree Systems, a prominent venture capital firm known for building & scaling tech-first brands, we are revolutionizing education with a tech-first...
-
Application Security Engineer
2 weeks ago
Bengaluru, Karnataka, India DigiCert Full time ₹ 8,00,000 - ₹ 12,00,000 per yearWho we areWe're a leading, global security authority that's disrupting our own category. Our encryption is trusted by the major ecommerce brands, the world's largest companies, the major cloud providers, entire country financial systems, entire internets of things and even down to the little things like surgically embedded pacemakers. We help companies...
-
Application Security Engineer
2 weeks ago
Bengaluru, Karnataka, India DigiCert Full time ₹ 12,00,000 - ₹ 36,00,000 per yearWho we areWe're a leading, global security authority that's disrupting our own category. Our encryption is trusted by the major ecommerce brands, the world's largest companies, the major cloud providers, entire country financial systems, entire internets of things and even down to the little things like surgically embedded pacemakers. We help companies...
-
Application Security Engineer
2 days ago
Bengaluru, Karnataka, India Clinisys Full time ₹ 15,00,000 - ₹ 25,00,000 per yearIn this role, as an Application Security Engineer, you will work as a part of our security engineering team and you will collaborate with other IT professionals to ensure that data is protected. You will be responsible for suggesting and implementing with best security practices within software development lifecycle (SDLC). You will responsible for setting...
-
Application Security Engineers
2 weeks ago
Bengaluru, Karnataka, India NETSACH GLOBAL Full time ₹ 12,00,000 - ₹ 36,00,000 per yearGreetings from Netsach - A Cyber Security Company.We are looking for Application security Engineers (2 resources) with 8+ yrs of strong experience who would be responsible for providing technical expertise on secure software development and support of all associated activities, processes, and tools for protecting technology-based informationJob Titlle:...
-
Application Security Engineer
2 weeks ago
Bengaluru, Karnataka, India BitGo Full time ₹ 8,00,000 - ₹ 12,00,000 per yearBitGo is the leading infrastructure provider of digital asset solutions, delivering custody, wallets, staking, trading, financing, and settlement services from regulated cold storage. Since our founding in 2013, we have focused on enabling our clients to securely navigate the digital asset space. With a global presence and multiple Trust companies, BitGo...
-
Application Security Engineer
2 days ago
Bengaluru, Karnataka, India Dezerv Full time ₹ 15,00,000 - ₹ 30,00,000 per yearDezerv is a house of investing solutions for high-net-worth and affluent Indians. Dezerv is co-founded by Sandeep Jethwani, Vaibhav Porwal, and Sahil Contractor. They have led successful wealth management businesses and managed over USD 7 billion in assets. The Dezerv team brings together decades of investing expertise from leading global financial...
-
Application Security Engineer
6 days ago
Bengaluru, Karnataka, India IG Group Full time ₹ 12,00,000 - ₹ 36,00,000 per yearJob TitleApplication Security EngineerJob DescriptionSo, who are we? Hello, we're IG Group. We are a publicly-traded FTSE250 FinTech company who run mobile, web and desktop platforms that help our clients trade stocks & shares, leveraged products, Futures & Options and Crypto.We are ambitious. Over 340,000 people already use our platforms. We're global with...
