This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Senior Application Security Engineer in India.

In this role, you will play a critical part in strengthening application security across the entire software development lifecycle. You will work closely with engineering, QA, and DevOps teams to ensure security is embedded from design through deployment in fast-moving, cloud-native environments. The position involves identifying vulnerabilities early, guiding remediation efforts, and implementing robust security practices that reduce risk and improve resilience. You will be a key contributor to shaping secure development standards and driving a strong security-first culture across technical teams. The environment is collaborative and engineering-driven, with a strong focus on DevSecOps practices and automation. You will also contribute to incident response, threat modeling, and continuous improvement of application security maturity. This role is ideal for someone who enjoys combining deep technical security expertise with hands-on engineering collaboration.

You will be responsible for securing applications across the software development lifecycle by identifying risks, enabling secure development practices, and driving remediation efforts in collaboration with engineering teams.

• Perform manual and automated security assessments of web, mobile, and cloud-based applications
• Integrate security practices into the SDLC through DevSecOps collaboration with development and engineering teams
• Conduct secure code reviews, threat modeling, and application risk assessments to identify design and implementation vulnerabilities
• Implement, configure, and manage application security tools such as SAST, DAST, SCA, and IAST solutions
• Define and enforce application security policies, standards, and secure coding guidelines
• Monitor, triage, and respond to application-layer vulnerabilities and security incidents
• Partner with QA and engineering teams to validate fixes and ensure effective security testing coverage
• Lead application security incident response activities and coordinate mitigation efforts
• Deliver security training to developers and promote secure coding practices across engineering teams
• Stay updated on emerging threats, vulnerabilities, and industry best practices while contributing to broader security initiatives

Requirements

You bring extensive experience in application security and secure software development, along with strong technical expertise, communication skills, and the ability to work across engineering and security functions.

• 8+ years of overall experience in software engineering or security-related roles
• 5+ years of hands-on experience in application security, secure development, or penetration testing
• Bachelor’s degree in Computer Science, Cybersecurity, or a related field, or equivalent practical experience
• Strong understanding of web technologies including HTML, JavaScript, Python, and REST APIs
• Experience with application security tools and integrating them into CI/CD pipelines for automated security testing
• Strong knowledge of OWASP Top 10, SANS Top 25, CWE, CVE, and secure coding principles
• Experience working with cloud platforms such as AWS, Azure, or GCP and their security controls
• Strong collaboration and communication skills to engage both technical and non-technical stakeholders
• Preferred certifications such as CSSLP, GWAPT, OSCP, or CEH are a plus
• Experience with container security, CI/CD security integration, and regulatory frameworks such as SOC 2, ISO 27001, or PCI DSS is an advantage
• Prior experience in agile or DevOps environments is highly desirable

Benefits

• Competitive compensation aligned with experience and market benchmarks
• Flexible work arrangements, including remote-friendly options depending on project needs
• Opportunity to work on modern cloud-native applications and advanced security challenges
• Exposure to DevSecOps practices, automation, and enterprise security tooling
• Professional growth through continuous learning and security certifications support
• Collaborative and engineering-driven environment with strong cross-functional teamwork
• Chance to shape security standards and influence application security strategy

We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.

We appreciate your interest and wish you the best!

Why Apply Through Jobgether?

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.

#LI-CL1