Application Security Engineer
Atomicwork Inc5 months ago
Bengaluru, IndiaEntry Level / Mid Level
Responsibilities
- Develop and improve tools for discovering and aggregating security vulnerabilities.
- Perform manual and automated assessments of Atomicwork applications.
- Build repeatable and automated security test suites.
- Conduct security-focused code reviews.
- Analyze system services and identify issues in code, networks, and applications.
- Integrate and automate SAST in the DevOps pipeline.
- Support the bug bounty program.
Requirements
- Familiarity with common security flaws and mitigation strategies (e.g., OWASP Top 10).
- Experience in identifying security issues through code review.
- Proficient in at least one CI/CD product such as GitHub Actions, ArgoCD, or Jenkins.
- Proficient in Java or Python.
- Familiarity with security libraries and tools like static analysis and penetration testing tools.
- Good understanding of network and web-related protocols (TCP, TLS, HTTPS, DNS).
- Ability to work effectively in a fast-paced environment.
- Knowledge of multiple classes of vulnerabilities including XSS, SQL Injection, CSRF, and code injection.
- Nice to have: Proficiency in Kubernetes, AWS, and Linux.
- Nice to have: Understanding of REST architecture and SQL/non-SQL databases.
Benefits
- Fantastic team environment.
- Conveniently located offices across five cities.
- Flexible work timings.
- Unlimited sick leaves and 24 days off annually.
- Comprehensive health insurance for the entire family.
- Premium Apple hardware for optimal work performance.
- Hassle-free reimbursements for flexible allowances.
- Team events and celebrations for milestones.
- Annual outings for team bonding.