Senior Application Security Engineer

about 14 hours ago

Bengaluru, IndiaSenior / Mid Level

H1B Sponsor

Responsibilities

Lead the integration of security measures into the SDLC.
Conduct thorough security assessments and penetration testing for web applications.
Advise software engineering teams on secure architectural design.
Perform and coordinate manual and automated code reviews.
Lead threat modeling exercises across engineering teams.
Collaborate with development teams to implement DevSecOps practices.
Contribute to internal security tooling development or integration.
Develop and maintain a secure framework for code deployment.
Communicate security policies and procedures effectively across teams.
Establish and maintain strong relationships with stakeholders.
Stay updated on the latest security threats and trends.
Assist in the development and enforcement of security policies.
Manage the bug bounty program.
Develop program documentation for operational stability.
Support leadership in defining the roadmap for DevSecOps maturity.
Support governance and compliance teams on secure engineering practices.
Drive and support remediation efforts for identified security issues.
Promote a security-forward culture.
Mentor junior team members.
Perform other duties as assigned.

5+ years of experience in cybersecurity focused on web application security.
Proficiency in programming/scripting languages such as JavaScript, Python, Java, Bash, and PowerShell.
Experience in penetration testing.
Bachelor’s or master’s degree in computer science, cybersecurity, or a related field.
Proven experience with DevSecOps tools and methodologies.
Strong understanding of security protocols, cryptography, and vulnerabilities.
Excellent communication skills for engaging technical and non-technical stakeholders.
Strong analytical and problem-solving abilities.
Advanced knowledge of Information Security design concepts.

AWSBashJavaJavaScriptPowerShellPython