Current jobs related to Application Security Engineer-AppVM - Bengaluru, Karnataka - Booking Holdings
-
Security Engineer II
2 days ago
Bengaluru, Karnataka, India Safe Security Full timeAt SAFE Security, our mission is bold and ambitious: We Will Build CyberAGI — a super-specialized system of intelligence that autonomously predicts, detects, and remediates threats. This isn't just a vision—it's the future we're building every day, with the best minds in AI, cybersecurity, and risk. At SAFE, we empower individuals and teams with the...
-
Application Security Engineer
4 days ago
Bengaluru, Karnataka, India Allen Online Full timeJob Title: Staff Engineer - Application SecurityWe are seeking a highly experienced Principal Engineer in Application Security to join our team. The ideal candidate will play a critical role in ensuring our applications are secure and comply with the Indian Data Protection and Privacy (DPDP) laws. This position requires a deep understanding of application...
-
Application Security Engineer
2 weeks ago
Bengaluru, Karnataka, India ALLEN Digital Full timeAbout ALLEN Digital:At ALLEN Digital, we spearhead a technology-driven approach to education, leveraging top-tier tech talent from leading technology firms. Through our strategic collaboration with Bodhi Tree Systems, a prominent venture capital firm known for building & scaling tech-first brands, we are revolutionizing education with a tech-first...
-
Application Security Engineer
6 days ago
Bengaluru, Karnataka, India Zuora Full timeCompany OverviewAt Zuora, we do Modern Business. We're helping people subscribe to new ways of doing business that are better for people, companies and ultimately the planet. It's an approach resulting from the shift to the Subscription Economy that puts customers first by building recurring relationships instead of one-time product sales and focuses on...
-
Application Security Engineer
2 days ago
Bengaluru, Karnataka, India Exotel Techcom Pvt Ltd Full timeAbout UsExotel is a leading provider of AI transformation solutions for enterprise customer engagement and experience. With over 20 billion annual conversations across omnichannel, voice, agents, and bots, Exotel is trusted by 7,000+ clients worldwide, spanning industries such as BFSI, Logistics, Consumer Durables, E-commerce, Healthcare, and Education....
-
Application Security
4 days ago
Bengaluru, Karnataka, India Pearson Full timeDescriptionAt Pearson, we are the world's learning company with over 24,000 employees across 70 countries. Our mission is to combine world-class educational content and assessment, powered by services and technology, to enable more effective teaching and personalised learning at scale. We believe that wherever learning flourishes, so do people.In this...
-
Application Security Engineers
15 hours ago
Bengaluru, Karnataka, India Netsach Global Full timeGreetings from Netsach - A Cyber Security Company.We are looking for Application security Engineers (2 resources) with 8+ yrs of strong experience who would be responsible for providing technical expertise on secure software development and support of all associated activities, processes, and tools for protecting technology-based informationJob Titlle:...
-
Application Security Engineer
4 days ago
Bengaluru, Karnataka, India EquiLend Full timeAbout UsWe are a leading global financial technology company transforming how the securities finance industry trades, settles, and analyzes data. Our award-winning Trading, Post-Trade, Data & Analytics, RegTech, and SaaS solutions power efficiency, transparency, and innovation for over 200 of the world's top financial institutions. Every month, our platform...
-
Application Security Engineer
17 hours ago
Bengaluru, Karnataka, India Exotel Techcom Pvt Ltd Full timeAbout UsExotel is a leading provider of AI transformation solutions for enterprise customer engagement and experience. With over 20 billion annual conversations across omnichannel, voice, agents, and bots, Exotel is trusted by 7,000+ clients worldwide, spanning industries such as BFSI, Logistics, Consumer Durables, E-commerce, Healthcare, and Education....
-
Application Security Engineer
16 hours ago
Bengaluru, Karnataka, India RemoteStar Full timeAbout the client: Our Client is a global technology company, home to more than 220,000 people across 60 countries, delivering industry-leading capabilities centered around digital, engineering, cloud and AI, powered by a broad portfolio of technology services and products. We work with clients across all major verticals, providing industry solutions for...
Application Security Engineer-AppVM
2 weeks ago
Role Description:
As an Application Security Engineer at , you will play a critical role in safeguarding one of the world's largest online travel platforms. This position sits at the intersection of security and software development, focusing on identifying, preventing, and mitigating security vulnerabilities throughout the application development lifecycle.
In this role, you will collaborate with development teams to implement secure coding practices, conduct security assessments of applications, and develop automated security testing solutions. You'll leverage your expertise in vulnerability assessment, and secure software development to protect 's extensive digital infrastructure and the sensitive data of millions of users worldwide.
The ideal candidate combines strong technical security knowledge with excellent communication skills to effectively partner with cross-functional teams in 's dynamic, global environment. This position offers the opportunity to make a significant impact on the security posture of a technology leader in the travel industry.
Key Responsibilities
- Manage and triage vulnerability reports from HackerOne and internal assessments, conduct validation and impact analysis, and maintain comprehensive tracking dashboards for security posture visibility
- Partner with development teams to communicate vulnerability details, provide remediation guidance, review proposed fixes, and facilitate security design reviews and threat modeling sessions
- Conduct manual security testing, code reviews, and penetration testing of applications and APIs while developing automated vulnerability scanning processes for CI/CD integration
- Coordinate with bug bounty platforms to optimize program scopes and researcher engagement, manage responsible disclosure processes, and maintain relationships with external security researchers
- Lead security incident response for critical vulnerabilities, prepare executive reports on security risk posture, and develop security training materials and workshops for development teams
- Collaborate with development teams to implement secure coding practices and review application architectures for security considerations
- Provide guidance and training to development teams on application security best practices
- Stay current on emerging threats and vulnerabilities to proactively enhance security controls
What We Are Looking For
- Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent experience
- 3-5 years years of experience in application security or information security roles with at least 1 years fulltime and exclusive experience in the given area of vulnerability management.
- Demonstrated experience configuring and managing Web Application Firewall solutions (e.g., AWS WAF, Cloudflare, F5, Imperva)
- Strong understanding of OWASP Top 10 vulnerabilities and mitigation strategies
- Knowledge of secure coding practices and common web application vulnerabilities
- Scripting and automation skills using Python, or similar languages
- Knowledge of DevSecOps practices and tools for integrating security into CI/CD pipelines
- Excellent communication skills to explain technical security concepts to non-technical stakeholders
- Knowledge of compliance requirements related to application security (e.g.,
PCI DSS, GDPR)
Nice to Have
- Security certifications such as OSCP, OSWA and OSWE.
- Experience with cloud security and securing applications in AWS, Azure, or GCP environments
- Experience with API security and securing microservices architectures
- Experience with threat modeling and risk assessment methodologies
- Contributions to the security community through research, blog posts, or open-source projects
