1262 Application Security Jobs - Page 45

We're Looking For: We are seeking an Associate Application Security Engineer with experience in application security and threat mitigation. You will be part of the Cyber Security Team responsible for enhancing Amitis information security program. You will be involved in establishing threat plans, recommending security tools, and collaborating with cross-functional teams to implement security solutions. In this role, you will have the opportunity to use your experience in secure coding practices and vulnerability management. The ideal candidate will have 4 to 5 years of IT, Security experience or a Bachelors Degree in Computer Science or related field. You Are: Detail-oriented. You will evaluate and mitigate security threats to safeguard applications and data effectively. Adaptable . You will navigate technical complexities to provide tier-I support for production systems. Analytical . You will continually seek improvements in our security stack and implement streamlined security integration efforts. Collaborative. You will actively engage with diverse teams to promote a culture of security awareness and best practices. A Problem Solver. You will assess complex security challenges, identify root causes, and proper effective solutions. You Will: Establish threat plans and recommend security tools. Collaborate with cross-functional teams to implement security solutions. Review and consult on secure coding flaws. Conduct regular security assessments and audits to ensure compliance with industry standards and regulations. Develop and deliver comprehensive security training programs for employees to enhance their understanding of potential threats and preventive measures. Who You Will Work With: Reporting to the Office of the CISO, this role will collaborate with development teams, management, and other cybersecurity professionals on a regular basis. Other key interactions/exposure: Regulatory bodies, internal standards committees. Must Haves: Bachelor’s Degree in Computer Science/ related field or 4 to 5 years of IT/ Security experience Experience in application security, vulnerability management, and secure coding practices. Nice to Have’s: Security certifications (CISSP, OSCP, etc.) Volunteer work in the open source/OWASP and/or local IT/InfoSec community.

Project Role : Application Lead Project Role Description : Lead the effort to design, build and configure applications, acting as the primary point of contact. Must have skills : Solution Architecture Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Lead, you will lead the effort to design, build, and configure applications, acting as the primary point of contact. You will be responsible for overseeing the entire application development process and ensuring its successful implementation. This role requires strong leadership skills and the ability to collaborate with cross-functional teams to deliver high-quality solutions. Roles & Responsibilities:- Expected to be an SME, collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Lead the effort to design, build, and configure applications.- Act as the primary point of contact for application-related matters.- Oversee the entire application development process.- Ensure successful implementation of applications. Professional & Technical Skills: - Must To Have Skills: Proficiency in Solution Architecture.- Strong understanding of software development principles and practices.- Experience in designing and implementing scalable and reliable applications.- Knowledge of various programming languages and frameworks.- Familiarity with cloud technologies and services.- Good To Have Skills: Experience with application security.- Recommendation:Familiarity with agile methodologies. Additional Information:- The candidate should have a minimum of 7.5 years of experience in Solution Architecture.- This position is based at our Bengaluru office.- A 15 years full-time education is required. Qualification 15 years full time education

Requirement of Web Application Security, Mobile Application Security and Api Having deep Knowledge Application Security

Job Requirements Should have at least 5 years of professional experience in application security or a related field. Proven expertise in web and mobile security architecture, frameworks, and testing methodologies (e.g., OWASP Top 10). Extensive hands-on experience with implementing and scaling DevSecOps practices across CI/CD pipelines. Proficient in at least one programming and one scripting language, with the ability to review and guide secure coding practices. Experience working with bug bounty programs or vulnerability disclosure platforms is a strong plus. Ability to lead security reviews, influence engineering teams, and mentor junior security professionals is highly valued.

Toast is driven by building the restaurant platform that helps restaurants adapt, take control, and get back to what they do best: building the businesses they love, Product Security at Toast isn't just about running tools and reporting vulnerabilities we're the vigilant chefs ensuring the Toast never gets burned We bake security into every layer of our products, from the first sprinkle of an idea to the final serving of a fully-baked solution Our team is the secret ingredient that makes Toast's digital recipe both delicious and secure We collaborate closely with R&D, seasoning the development process with robust security measures that protect the services and applications our customers rely on to run their businesses, Like master chefs, we blend cutting-edge technology with strategic thinking, kneading security into the dough of every product we create By joining our Product Security team, you'll be part of the kitchen crew that keeps our customers' trust from going stale You'll tackle complex challenges that have real-world impact, helping to serve up a safer, more secure digital experience for businesses that count on Toast every day It's not just about finding vulnerabilities it's about crafting a recipe for digital trust that keeps our customers coming back for more, About this roll(Responsibilities) Identify, triage, and provide remediation guidance for application vulnerabilities, Select, implement, design, or build tools to thwart attacks of all shapes and sizes, Improve developer tooling and adoption to build a more robust SSDLC, Practice a #OneTeam attitude to help other Toast teams make informed, security-conscious decisions when building new software, Support and expand the Security Champions program, providing edge security guidance and training, Assist incident response teams with application security expertise and tools, Think like an attacker to identify weaknesses in application architecture, In addition: Support Cloud and Network Infrastructure Engineering's implementation of edge security solutions, Influence the implementation and rule maintenance of our WAF strategy and other edge security solutions, Advise on WAF rules and policies to protect against common and emerging threats, Conduct regular assessments of our edge security posture and recommend improvements, Provide expertise on Content Delivery Networks (CDNs) and their security features, Do you have the right ingredients*(Requirements) 5+ years of experience in application security Strong knowledge of common web application vulnerabilities and edge-based attack vectors, Proficiency in analyzing web traffic patterns and identifying anomalies, Knowledge of compliance standards relevant to the financial industry (e-g, PCI DSS, SOC 2), Excellent problem-solving skills and ability to think creatively about edge security challenges, Strong communication skills, with the ability to explain complex edge security concepts to both technical and non-technical audiences, Strong understanding of cloud application architecture and common weaknesses, Special Sauce(Nonessential Skills/Nice to Haves) Experience with: Understanding of WAF configuration, tuning, and optimization, Popular WAF solutions (e-g, AWS WAF, Cloudflare, Akamai, ModSecurity), Familiarity with CDN technologies and their security features, Cloud and container security technologies and SSDLC tooling (e-g SAST/DAST/SCA) Infrastructure-as-code (IaC) technologies like Terraform to manage cloud security services Securing financial technologies Relevant security certifications (e-g, CCSP, CISSP, CSSLP) are a plus Diversity, Equity, and Inclusion is Baked into our Recipe for Success At Toast, our employees are our secret ingredientwhen they thrive, we thrive The restaurant industry is one of the most diverse, and we embrace that diversity with authenticity, inclusivity, respect, and humility By embedding these principles into our culture and design, we create equitable opportunities for all and raise the bar in delivering exceptional experiences, We Thrive Together We embrace a hybrid work model that fosters in-person collaboration while valuing individual needs Our goal is to build a strong culture of connection as we work together to empower the restaurant community

Position Overview: This role is focused on hands-on implementation of security solutions within AWS environments. It is ideal for individuals with strong practical experience in cloud security, networking, and application security. Core Responsibilities: AWS Security Services Implementation: Deploy and manage core AWS security services like IAM, KMS, CloudHSM, AWS Organizations, Web Application Firewall (WAF), AWS Network Firewall, and Gateway Load Balancer (GWLB) based Security Appliances. Configure and optimize security features to meet organizational security requirements. Network Security: Design and implement secure VPC architectures, including subnets, routing, and firewall configurations. Hands-on experience with firewalls, network segmentation, and security group management in AWS. Identity & Access Management (IAM): Strong expertise in IAM roles, policies, and AWS Service Control Policies (SCPs). Implement security best practices for role-based access control (RBAC) and least privilege principles. Application Security: Integrate with identity providers such as Active Directory and Okta. Secure application architectures, focusing on authentication, authorization, and data protection. Security Monitoring & Incident Response: Utilize AWS GuardDuty, CloudTrail, and other monitoring tools for threat detection and incident response. Implement security logging and audit trails to maintain compliance with internal policies. Key Requirements: Hands-on AWS Security Expertise: Proven experience in implementing and managing AWS security services. Network Security Knowledge: Strong understanding of subnetting, routing, firewalls, and secure network design in the cloud. Active Directory Experience: Essential for integrating with enterprise identity systems. IAM & SCP Expertise: Deep knowledge of AWS IAM, Service Control Policies, and security governance. Not an InfoSec or Audit Role: This is a technical, hands-on position focusing on practical security implementation, not compliance audits or theoretical security reviews. Preferred Skills: Cloud Security Certifications: AWS Certified Security Specialty, AWS Certified Solutions Architect, or similar. Application Security Knowledge: Experience with secure application frameworks and identity federation. Automation & Scripting: Familiarity with infrastructure as code (IaC) tools like Terraform or CloudFormation. Keywords IAM,KMS,Cloud HSM,Application Security,IaC,CloudFormation,AWS*

To provide business application implementation, on- going support and continuous improvement on all project construction areas using Oracle application and technology platform as a functional expertise to ensure the business operation runs smoothly, efficiently and effective by taking the advantages of innovative technology solutions and best practices. Required Skills And Experience 5+ years in Projects Functional role, Experience minimum 1 end to end implementation life cycle for Oracle HCM Project and expertise in Security Roles & Permissions Very good on communication, influence skills, business result oriented and managing customer/ user expectation. Good Understanding HCM modules (Absence, Compensation, Core HR, Recruiting, Talent Management, Learning, and Time & Labour), close cooperation with the clients business teams Demonstrate an understanding of business processes designs, cloud security risk, Oracle application security and risk management cloud Independently gather and analyze security requirements to tailor solutions that meet client needs Experience in implementing role-based access controls (RBAC), Oracle Cloud Quarterly patch analysis and regression testing, supporting Software Development Life Cycle (SDLC) including configuration in lower environments, migration, and QA, reviewing, audit end user accounts,permissions, and access rights, performing segregation of duties (SOD) and mitigating risks. Manage user provisioning, de-provisioning, and transitions to ensure seamless access control. Experience in monitoring and troubleshooting incidents, performing license analysis, regression testing for patch releases, and supporting audit requirements. Experience in coordinating with development teams, functional teams, business leads, information security & risk management teams. Conduct security audits and compliance checks to identify and mitigate potential vulnerabilities. Provide training and support to users on new security policies and procedures. Stay updated with the latest security trends, tools, and technologies in Oracle Cloud environments. Configures the system, tests the solution with users Provides user training Supports cutover and stabilizes the solution, provides post go-live support Preferred Qualifications Bachelos;s degree in a relevant technology field

Role - Network Penetration Testing Location : Bangalore (JP Nagar), Navi Mumbai (Mahape) Experience: 3+ years Highest Qualification: Any Full Time Graduate Job Responsibilities: The candidate is expected to execute manage multiple complex and enterprise application security testing projects The candidate is expected to complete projects on time, coordinate with client stakeholders for issues and challenges, track delays, etc. The candidate is expected to gain in-depth knowledge and understanding of enterprise web applications and web services developed in various languages (i.e. Java, ASP.NET, ReactJS, etc.) The candidate will be involved in application architecture understanding, threat identification, vulnerability identification and control analysis The candidate is expected to identify and infer the business risk posed by vulnerabilities identified and showcase prioritization of risks including solution recommendations The candidate is expected to engage with both business and technical teams within and outside the organization from a project scope definition, project execution, project closure and post project support perspectives The candidate is expected to mentor and train junior resources with focus on enhancing their skill sets The candidate is expected to monitor their team members adherence to established security testing processes and organizations policies and procedures The candidate is expected to conduct project reviews to ensure a thorough testing is conducted by the team The candidate is expected to perform technical reviews to identify errors and suggest changes to ensure highest quality of the deliverables The candidate is expected to identify new test cases and develop techniques to test and showcase proof of concept The candidate is expected to track errors made by the engineers and develop an improvement plan for them The candidate should be open for onsite deployments anywhere across the world as business demands Required skill set: 4+ years of Application Security Testing Experience Expertise in web application security testing Expertise in web services security testing Experience in application architecture review Experience in network infrastructure security testing Ability to handle difficult situations and to provide alternative solutions or workarounds Experience in training and mentoring other team members Good verbal and written communication skills with the ability to talk to both business teams and technical teams .

Job Summary: We are seeking a dynamic and experienced Cybersecurity SOC Group Head to lead and oversee the operations, strategy, and continuous improvement of our 24/7 Security Operations Center. This role is critical to managing cyber threats, detecting and responding to incidents, and ensuring the overall security posture of the organization. The ideal candidate will bring a strategic vision, deep technical expertise, and strong leadership to transform and evolve SOC capabilities. Qualifications: Bachelors or Master s degree in Computer Science, Information Security, or related field. Minimum 12+ years of cybersecurity experience, with at least 5+ years in SOC leadership roles. Proven experience managing large SOC teams in enterprise environments or MSSP settings. Strong knowledge of SIEM (e.g., Splunk, Qradar, MS Sentinel ), SOAR, EDR (e.g., CrowdStrike,Microsoft Defender for Endponts), and cloud security. Deep understanding of attack vectors, threat landscapes, and incident response lifecycle. Relevant certifications such as CISSP, CISM, GIAC, or SANS GCIH/GSOC preferred. Soft Skills: Excellent leadership, people management, and conflict resolution skills. Strong communication and reporting abilities for executive-level stakeholders. Ability to work under pressure during high-stress cyber incidents. Preferred Experience: Experience in multi-tenant SOC environments or MSSPs. Familiarity with OT/ICS security (for industrial environments) is a plus. Global experience across multiple geographies and regulatory landscapes. Strategic Leadership: Define the vision, strategy, and roadmap for SOC operations in alignment with enterprise cybersecurity goals. Drive maturity improvements using NIST CSF, MITRE ATT&CK, and other industry frameworks. Oversee budget planning, resource allocation, and SOC capability development. Operations Oversight: Manage daily SOC operations, including threat monitoring, detection, triage, incident response, and escalation. Lead efforts to enhance SOC processes, use cases, and threat detection logic. Establish and enforce KPIs, SLAs, and operational metrics to evaluate performance. Team Management: Build and lead a team of SOC analysts, incident responders, threat hunters, and shift leads. Develop training programs and career paths to upskill and retain top cybersecurity talent. Establish a 24/7 shift model (if not already implemented) and ensure coverage during cyber crises. Technology & Tools: Oversee and optimize the use of SIEM, SOAR, EDR, XDR, and threat intelligence platforms. Collaborate with engineering and IT teams to integrate data sources and enrich detection capabilities. Lead initiatives to automate repetitive tasks and enhance alert quality through use of ML/AI where applicable. Incident Management: Serve as executive escalation point for critical incidents and major breaches. Coordinate with IR teams, forensic experts, legal, PR, and compliance during high-impact events. Conduct post-incident reviews and ensure root cause remediation. Collaboration & Compliance: Act as the SOC representative in internal audits, regulatory assessments, and external engagements. Collaborate with threat intelligence, GRC, infrastructure, and application security teams. Ensure alignment with compliance requirements such as ISO 27001, NIST, GDPR, HIPAA, etc.

Senior Application Security Engineer at Practical DevSecOps | Jobs at Practical DevSecOps We are seeking an Application Security Engineer to join our team and help maintain, enhance, and develop security training exercises for our renowned DevSecOps, API Security, Threat Modeling and many other courses. The ideal candidate will bring technical security expertise while having the ability to create educational content that aligns with our practical, hands-on training approach. Key Responsibilities Training Content Excellence Fix and troubleshoot existing training exercises when issues arise from tool or environment version upgrades Modernize exercises by upgrading components when tools become outdated, maintaining industry relevance Create new, innovative security exercises that demonstrate real-world vulnerabilities using our open source projects Assist our training team in developing new courses aligned with emerging security domains Contribute to our open source security projects with practical, educational components Conduct application security assessments using methodologies taught in our training programs Help clients implement secure coding practices and remediation strategies based on our training principles Support integration of security tools into CI/CD pipelines using techniques from our courses Apply and reinforce the practical DevSecOps methodologies we advocate in our training Stay current with security trends, adapting our training content to reflect the evolving threat landscape Develop educational materials that bridge theory and practice in DevSecOps Support instructors with technical expertise during course delivery Help maintain our position as thought leaders in practical DevSecOps implementation Required Qualifications Understanding of application security concepts, particularly those covered in our OWASP-aligned curricula Experience with security testing tools featured in our training (e.g., SAST/DAST tools, containers, cloud security) Proficiency in programming languages relevant to our courses (Python, Java, JavaScript) Knowledge of DevSecOps practices as applied in real-world environments Familiarity with the core domains we teach: DevSecOps, AI Security, API Security, and Threat Modeling Strong troubleshooting abilities to resolve complex training environment issues Preferred Qualifications Familiarity with our open source projects (DevSecOps Studio, DevSlop, etc.) Security certifications relevant to our training domains Experience creating educational content or technical documentation Background in developer education or security training Public speaking or training delivery experience Skills Strong technical problem-solving abilities Clear communication skills for explaining complex security concepts Passion for DevSecOps methodologies and security education Self-motivated approach to improving training materials Collaborative mindset to work effectively with our international team

Task and responsibilities: Drive security innovation: Implement, enhance, and continuously improve cybersecurity across Siemens Healthineers. Assess & advise: Evaluate the security capabilities of internal applications, consult stakeholders on residual risks, and propose mitigation strategies. Align security standards: Work closely with teams across Infrastructure, Cybersecurity Operations, and Governance to ensure compliance with best practices. Embed security-by-design: Contribute to application and infrastructure projects, defining security models and promoting proactive security measures. Stay ahead of threats: Monitor cybersecurity trends and market developments to enhance security posture. Qualifications: You have at least 2 years of experience within a Cybersecurity function or worked predominately on Cybersecurity related topics in an operational function. You have subject matter expertise of application security best practices and implementation (e.g., security protocols, cryptography, authentication, authorization, hardening of operating systems, databases). You have experience determining security requirements by evaluating business strategies and requirements following a risk-based approach, and describe associated data flows and security controls needed, interacting with different stakeholders to explain and enforce security measures. Additionally You are analytical, work methodically and autonomously. You work or have been working in global distributed teams. You are a quick learner and have the attitude to get into new technologies and architectures.

We are seeking an experienced Senior iOS Developer to join our team. The ideal candidate will have 7+ years of experience in iOS development, a deep understanding of Swift and Objective-C , and expertise in various iOS frameworks. You will play a key role in designing, developing, and optimizing high-performance mobile applications that offer an exceptional user experience. Key Responsibilities: Develop & maintain iOS applications using Swift and Objective-C . Utilize iOS frameworks like UIKit, Core Data, and Core Animation to enhance app functionality. Integrate RESTful APIs and manage JSON-based data. Follow Apple s Human Interface Guidelines to ensure a seamless UI/UX. Manage source code using Git and adhere to best coding practices. Troubleshoot and resolve complex technical issues efficiently. Work in Agile development environments , collaborating with cross-functional teams. Implement SwiftUI and Combine for modern app development. Ensure compliance with mobile security standards . Utilize CI/CD tools for efficient deployment. Work with analytics platforms like Firebase and Google Analytics to track app performance. Stay updated on iOS development trends, including video codecs and DRM technologies . Qualifications & Skills: 7+ years of experience in iOS development. Proficiency in Swift and Objective-C . Strong knowledge of iOS frameworks ( UIKit, Core Data, Core Animation ). Experience with RESTful APIs and JSON . Familiarity with Apple s Human Interface Guidelines . Expertise in Git for version control. Strong problem-solving skills with attention to detail. Experience with SwiftUI and Combine (preferred). Understanding of mobile application security . Knowledge of CI/CD tools and processes . Experience with video codecs and DRM technologies (a plus). Excellent communication and teamwork skills .

In Amazon Stores, we ship some of the widest arrays of technology found at any company. From amazon.com to world class machine learning pipelines, from Innovative digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe s largest AWS deployment. As an AppSec engineer, you will collaborate with software development teams to ensure we keep our customers safe while developing these novel services. In a given day, you might be inspecting an application s code for security issues, building a new framework to help our software developers build faster and more securely, or fine-tuning the design for a new service alongside its software developers. The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. Technically, this person will be a security generalist with one or more areas of deep expertise. In their communication, they will clearly articulate risks to technical and non-technical audiences alike. Interpersonally, successful candidates will effectively harmonize disparate opinions while effectively prioritizing risks to guide their partners towards secure solutions. Our organization prizes its employees, and we show it through investing in work-life harmony. We have dedicated resources that consistently innovate in reducing on-call time and ensuring the team spend their time on the highest-value tasks. Join the stores AppSec organization to work hard, have fun, and make history! * Creating, updating, and maintaining threat models for a wide variety of software projects * Security architecture and design guidance * Manual and Automated Secure Code Review, primarily in Java, Python and Javascript * Development of security automation tools * Adversarial security analysis using innovative tools to augment manual effort * Security training and outreach for internal development teams * Independently solve security problems that require novel methods or approaches * Influence your team s and partners process, priorities, and choices to improve outcomes About the team Diverse Experiences Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn t followed a traditional path, or includes alternative experiences, don t let it stop you from applying. Why Amazon Security At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores. Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there s nothing we can t achieve. Inclusive Team Culture In Amazon Security, it s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices. Mentorship and Career growth We re continuously raising our performance bar as we strive to become Earth s Best Employer. That s why you ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional. - BS in Computer Science, Information Security, 1+ years of demonstrated experience of comprehensive application security assessments, including both automated and manual assessment. - Experience in threat modelling, architecture review, manual source code review, attacker exploit techniques, and methods for their remediation. - Programming or Scripting skills (E.g: Java, Python, Perl, Bash, Ruby, PowerShell, etc.) - You demonstrate excellent judgement in assessing and prioritizing technical risk - You have a strong application security background with a focus on scalable solutions - You have experience building and securing cloud infrastructure such as AWS - You have understanding of network architecture and enterprise IT systems - You work to identify and remove bottlenecks for your teammates, both in process and technology

In Amazon Stores, we ship some of the widest arrays of technology found at any company. From amazon.com to world class machine learning pipelines, from Innovative digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe s largest AWS deployment. As an AppSec engineer, you will collaborate with software development teams to ensure we keep our customers safe while developing these novel services. In a given day, you might be inspecting an application s code for security issues, building a new framework to help our software developers build faster and more securely, or fine-tuning the design for a new service alongside its software developers. The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. Technically, this person will be a security generalist with one or more areas of deep expertise. In their communication, they will clearly articulate risks to technical and non-technical audiences alike. Interpersonally, successful candidates will effectively harmonize disparate opinions while effectively prioritizing risks to guide their partners towards secure solutions. Our organization prizes its employees, and we show it through investing in work-life harmony. We have dedicated resources that consistently innovate in reducing on-call time and ensuring the team spend their time on the highest-value tasks. Join the stores AppSec organization to work hard, have fun, and make history! Our team puts a high value on work-life balance. Striking a healthy balance between your personal and professional life is crucial to your happiness and success here, which is why we aren t focused on how many hours you spend at work or online. Instead, we re happy to offer a flexible schedule so you can have a more productive and well-balanced life both in and outside of work. * Creating, updating, and maintaining threat models for a wide variety of software projects * Security architecture and design guidance * Manual and Automated Secure Code Review, primarily in Java, Python and Javascript * Development of security automation tools * Adversarial security analysis using innovative tools to augment manual effort * Security training and outreach for internal development teams * Independently solve security problems that require novel methods or approaches * Influence your team s and partners process, priorities, and choices to improve outcomes About the team Diverse Experiences Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn t followed a traditional path, or includes alternative experiences, don t let it stop you from applying. Why Amazon Security At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores. Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there s nothing we can t achieve. Inclusive Team Culture In Amazon Security, it s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices. Mentorship and Career growth We re continuously raising our performance bar as we strive to become Earth s Best Employer. That s why you ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional. - BS in Computer Science, Information Security, 3+ years of demonstrated experience of comprehensive application security assessments, including both automated and manual assessment. - Hands on experience in threat modelling, architecture review, manual source code review, attacker exploit techniques, and methods for their remediation. - Have good understanding of network architecture, enterprise IT systems and cloud such as AWS and programming or Scripting skills (E.g: Java, Python, Perl, Bash, Ruby, PowerShell, etc.) and can explain complex technical risks in simple, clear language that non-technical stakeholders can easily understand and act upon. - You demonstrate excellent judgement in assessing and prioritizing technical risk and You have a strong application security background with a focus on scalable solutions - You have experience building and securing cloud infrastructure such as AWS and work to identify and remove bottlenecks for your teammates, both in process and technology - You create and maintain security documentation, including architecture designs, implementation guides, and best practices to promote secure development practices - Identify security risks and drive continuous improvement in security controls and practices and collaborate with security stakeholders to develop security strategies

Job Summary We are seeking a Developer with 3 to 6 years of experience to join our team. The ideal candidate will have expertise in Unix Commands Oracle PL/SQL Oracle Apex Oracle Reports and Oracle Forms. Experience in FP&A and Finance domains is a plus. This is a hybrid work model with day shifts and no travel required. Responsibilities Develop and maintain applications using Oracle PL/SQL Oracle Apex Oracle Reports and Oracle Forms. Execute Unix Commands to manage and automate tasks efficiently. Collaborate with cross-functional teams to gather and analyze requirements. Design and implement database solutions to support business needs. Optimize and troubleshoot existing applications for improved performance. Create and maintain technical documentation for all developed applications. Provide support and resolve issues for deployed applications. Ensure data integrity and security across all applications. Participate in code reviews to maintain code quality and standards. Stay updated with the latest industry trends and technologies. Contribute to continuous improvement initiatives within the team. Communicate effectively with stakeholders to understand their needs and provide solutions. Ensure timely delivery of projects while maintaining high quality standards. Qualifications Possess strong experience in Unix Commands Oracle PL/SQL Oracle Apex Oracle Reports and Oracle Forms. Have a good understanding of FP&A and Finance domains. Demonstrate excellent problem-solving and analytical skills. Exhibit strong communication and collaboration abilities. Show a proactive approach to learning and adapting to new technologies. Display attention to detail and a commitment to quality. Have the ability to work independently and as part of a team. Certifications Required Oracle EPM Certification - optional

Vacancy Code: SAD/001/2025/V1 Location: Pune (Maharashtra), India Designation: Senior Software Engineer (Android Developer) Type of Position: Full time Work Experience Required: 8+ years Open Requirement: 3 About Uniken India Pvt. Ltd At Uniken, we unlock limitless possibilities for client-centric organizations by creating certainty in identity and security while delivering amazing customer experiences. We evolve and innovate with agility to grow possibilities for our business, our customers, our partners, and our people. We collaborate to leverage the unique strengths of our diverse global team of employees and partners. Our interactions are rooted in respect for people, beliefs, ways of life, and our environment. Job Overview: We're seeking an exceptional Senior Software Engineer with extensive Android and React Native expertise to join our innovative team at Uniken. As a key technical leader, you'll develop cutting-edge mobile solutions while mentoring junior developers and driving technical excellence. Skills Required: Strong Java OOPs concepts and design patterns understanding Experience in creating plugin/ SDK Understanding project management tools like Jira/Confluence Leveraging LLMS for Code Augmentation Experience in JNI is must Hands-on experience about best practices in mobile security Good understanding on SDLC Understanding of basic design principles behind a scalable module Must be able to comprehend the release notes for each new/ old Android OS release and assess its implications Must have strong experience in Kotlin, Java Hands-on experience in working multithreading environment Experience in cross-platform frameworks such as React Native/ Cordova/ Flutter Good Understanding of google playstore Experience working with remote data via REST and JSON Strong knowledge of Android UI design principles, patterns, and best practices Experience with third-party libraries and APIs Knowledge of the open-source Android/iOS ecosystem and the libraries available for common tasks Must be proficient in code versioning tools such as Git, SVN Working knowledge of the general mobile landscape, architectures, trends, and emerging technologies Solid understanding of the mobile development life cycle Problem-solving attitude Writing basic unit test cases Good to Have: Basic iOS understanding Shell script Python script NDK development Responsibilities: Design and develop new product features focusing on authentication, security, and scalability Contribute to architectural decisions and technical direction Implement robust, reliable, and high-performance code Participate actively in design and code reviews Create and maintain technical documentation Collaborate with cross-functional teams Mentor junior developers Troubleshoot and resolve complex technical issues Participate in agile ceremonies and sprint planning Ensure code quality through testing and best practices Proactively identify potential issues and recommend solutions before they impact development Take initiative to improve codebases, processes, and development practices Anticipate scaling and performance challenges and address them proactively Qualifications: Bachelor's or Master's degree in Computer Science, Engineering, or related field 8+ years of experience in Android development Soft Skills: Excellent written and verbal communication Problem-solving and analytical thinking Team collaboration and leadership qualities Adaptability and willingness to learn new technologies Ability to work in a fast-paced agile environment Strong proactive mind-set and initiative-taking ability Self-driven approach to identifying and solving problems without supervision Forward-thinking approach to technology adoption and implementation Benefits and Perks: Competitive salary package Good Mediclaim benefit and Group Accidental Professional development opportunities Great workplace flexibility Application Process: The interested Applications, including a resume and cover letter, should be directed to Ms. Dipti Thote at dipti.thote@uniken.com.

Senior Cybersecurity Engineer/Remote IC role with team handle of 1,2 member 6 + Years Mandatory -Sim and vapt /azure and aws Application security , network security , Infrastructure security Okay to use own laptop Apply -nidhi@intersourcesinc.com Required Qualifications: Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or a related field. 68 years of experience in cybersecurity engineering, SOC operations, or IT security roles. Proficiency in tools and technologies such as: SIEM: Splunk, ELK, Sentinel Endpoint & Network Security: CrowdStrike, Palo Alto, Cisco, Fortinet Cloud Security: AWS/GCP/Azure security tools, CSPM, IAM Vulnerability Management: Nessus, Qualys, Rapid7 DevSecOps: GitLab CI, Jenkins, Terraform, Kubernetes security Strong knowledge of network protocols, secure coding practices, encryption, and threat modeling. Preferred Certifications (any of the following): CISSP Certified Information Systems Security Professional CEH Certified Ethical Hacker OSCP Offensive Security Certified Professional CISM, Security+, GCIA, GCIH, CCSP, or vendor-specific cloud security Job Summary: We are seeking a highly skilled and experienced Senior Cyber Security Engineer to lead advanced security engineering efforts across our enterprise. This role involves designing,implementing, and maintaining secure infrastructure, detecting and responding to security incidents, and ensuring compliance with security policies, standards, and frameworks. Theideal candidate will have strong technical depth in network, application, cloud, and endpoint security, along with the ability to lead security initiatives and mentor junior team members. Key Responsibilities: Security Architecture & Implementation Design and implement enterprise-wide security solutions (e.g., firewalls, IDS/IPS, SIEM, DLP, endpoint protection). Work closely with IT and DevOps teams to ensure security is embedded across infrastructure and applications. Review and enhance security configurations of networks, systems, and cloud environments (AWS, Azure, GCP). Threat Detection & Incident Response Lead investigations of security incidents, root cause analysis, and remediation planning. Monitor and analyze logs, alerts, and vulnerabilities using tools like Splunk, Sentinel, QRadar, etc. Develop incident response plans and participate in tabletop and red team/blue team exercises. Compliance & Risk Management Ensure compliance with regulatory frameworks such as NIST, ISO 27001, HIPAA, PCI-DSS, GDPR, or FedRAMP. Conduct regular risk assessments and vulnerability scans using tools like Nessus, Qualys, or OpenVAS. Collaborate with audit and compliance teams on security control testing and reporting. Security Engineering & Automation Automate security tasks and workflows using scripting (Python, PowerShell, Bash). Integrate security tools and APIs with existing systems and CI/CD pipelines (DevSecOps). Develop and maintain documentation for systems, processes, and policies. Mentorship & Leadership Provide technical guidance and mentorship to junior engineers and security analysts. Stay current with the threat landscape and share knowledge across teams. Recommend and implement improvements in security posture, policies, and tools. Certifications Key Competencies: Analytical thinking and problem-solving Clear and concise communication (verbal and written) Proactive, self-motivated, and detail-oriented Ability to work independently and in cross-functional teams Strong project management and documentation skills

BMC Software is looking for a motivated and skilled individual to join the Product Security Group. This is a senior technical position in the team. The candidate will be responsible for engaging with various product teams on third-party software security, container security, and SaaS security. Here is how, through this exciting role, YOU will contribute to BMC's and your own success: You will provide subject matter expertise for application security with focus areas such as third-party software composition analysis, container security. You as an SME, will assist the product teams in understanding and handling vulnerabilities. You will perform threat modeling and architecture review. You may be involved in the new initiatives of the Product Security Group, including cross collaboration with non-technical teams (Sales, Legal etc.) You will be supporting necessary application security practices and contributing to central security scanning infrastructure design and management. . To ensure youre set up for success, you will bring the following skillset & experience: 5+ years of experience in application security (any combination of code, web, mobile, API, cloud, infrastructure, and container security) or information security. Effective problem-solving skills when encountering unexpected challenges. Excellent communication skills (written and verbal), and ability to interact clearly and effectively with other teams of various technical levels. Excellent troubleshooting and problem-solving skills. . Whilst these are nice to have, our team can help you develop in the following skills: Experience in system or network administration, and software development. Timeliness and attention to detail

We're HiringIOT Engineer! We are seeking an enthusiastic and tech-savvy Industrial IoT engineer who is passionate about solving industrial challenges through cutting-edge IoT solutions The candidate will support industrial IoT applications, troubleshoot issues, and develop innovative use cases leveraging various technologies to optimize industrial processes. “ LocationMumbai Suburban, India Work ModeWork From Office ’ RoleIOT Engineer Should have exp in Application Security,Network Protocols&Troubleshooting Industrial IoT Solutions & Troubleshooting Technical SupportProviding troubleshooting and maintenance for IoT-based industrial applications. Industrial Automation KnowledgeUnderstanding PLC, SCADA, and industrial sensors. Hardware & OS ManagementInstalling OS, handling industrial hardware issues, and configuring edge devices. IoT Development & Data Processing ProgrammingProficiency in JavaScript, Python, and Node-RED for IoT applications. Database ManagementWorking with SQL, No SQL, and Time-Series Databases for industrial data storage. Data VisualisationCreating Grafana dashboards for monitoring and reporting. Cloud & Edge Computing Cloud PlatformsKnowledge of Azure and cloud-based IoT architectures. Edge ComputingUnderstanding edge processing and embedded system integration. IoT Communication ProtocolsExperience with MQTT, OPC UA, Modbus, TCP/IP, UDP for data exchange. Networking & Security Network ConfigurationManaging industrial IoT networks, IP configurations, and device connectivity. Cybersecurity PrinciplesUnderstanding security best practices for IoT and industrial environments. Linux & Bash ScriptingWorking with Linux environments for automation and device management. Installation, Maintenance & IMAC (Install, Move, Add, Change) IoT Device DeploymentInstalling, configuring, and managing IoT hardware (Raspberry Pi, Arduino). Preventive MaintenanceSetting up alerts, reports, and predictive maintenance strategies. Version Control & ContainerizationUsing Git and Docker for managing industrial applications. Show more Show less

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together. This Senior Information Security Engineer is a member of the UHC A&I Tech Infra, Cloud and Data Services team that supports US Health Group and Student Resources,. This engineer will work with 4000+ agents as level 2 support for security incidents and investigation. Their primary function will be to monitor and respond to all vulnerabilities in Tanium, Tenable, and Security Platform. In addition the engineer will have primary responsibility of all updates throughout the infrastructure for the UHC lines of business that ingests over 200,000 MB of logs for Windows and RHEL Servers. This engineer will also work in Service Now to monitor queues and work incidents to resolution. This engineer will be working in both on-premise and azure cloud monitoring security and compliance. This engineer will work throughout the organization to quickly remediate any daily findings of new vulnerabilities that arise and create daily reports to show updated findings and tasks for remediation. Primary Responsibilities Core Tasks: Tanium, Security Platform, TVM remediate all vulnerabilities, patching Maintain cadence of monthly patching schedule for updates to all environments Operate and maintain security systems to protect data and systems and ensure auditability and compliance Respond, analyze, and resolve outages, incidents and/or threats Fulfill service requests Deploy new, update existing, replace or decommission solutions Work in Microsoft Endpoint Configuration Manager (MECM) for patching and Vulnerability remediation Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so Required Qualification Full time graduate Core Tasks: Tanium, Security Platform, TVM remediate all vulnerabilities, patching Maintain cadence of monthly patching schedule for updates to all environments Operate and maintain security systems to protect data and systems and ensure auditability and compliance Respond, analyze, and resolve outages, incidents and/or threats Fulfill service requests Deploy new, update existing, replace or decommission solutions Work in Microsoft Endpoint Configuration Manager (MECM) for patching and Vulnerability remediation Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes — an enterprise priority reflected in our mission. #Nic #Nic

Will be working on Application security testing Skills. Strategize and plan static and dynamic application security testing (SAST/DAST / SCA) tools. Will be responsible for Secure Coding Practices Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise BE / B Tech in any stream, M.Sc. (Computer Science/IT) / M.C.A, with Minimum 5 plus years of experience. Application Security TestingExperience with static and dynamic application security testing (SAST/DAST/ SCA) tools. Secure Coding PracticesKnowledge of secure coding standards (e.g., OWASP Top Ten) and experience in reviewing code for security vulnerabilities. Threat ModelingAbility to conduct threat modeling sessions to identify and mitigate security risks Preferred technical and professional experience Vulnerability AssessmentExperience in conducting vulnerability assessments and penetration testing Application Security TestingExperience with static and dynamic application security testing (SAST/DAST) tools Security ToolsProficiency in using security tools like Burp Suite, Nessus, or Fortify

Senior Cybersecurity Specialist Are you an experienced cybersecurity professional who is excited about practical application of cybersecurity into industrial and IoT environmentsWe would like to have you on our team to keep smart cities cybersecure! The KONE Technology and Innovation (KTI) function is where the magic happens at KONE. Its where we combine the physical world - escalators and elevators - with smart and connected digital systems. We are changing and improving the way billions of people move within cities every day. Within the KONE Technology & Innovation unit, we have a dedicated C ybers ecurity team for assuring the security of KONE s products and solutions as well as applications used by KONE s business lines. Buzzwords: Application security, Cloud security, SDL, DevSecOps We are now looking for a person to support and drive the Security Development Lifecycle (SDL) activities in KONE solution development projects. Our solutions range from connected elevator systems to cloud services and to mobile applications for technicians and for end users. As a Senior Cybersecurity Specialist, you will be responsible for supporting KONE development teams globally to identify and implement security requirements and to review and test the solutions as they have been implemented. You enjoy working in co-operation with development teams to offer solutions for security problems and practical guidelines on how to implement security in the projects. You get to conduct threat analysis and identify the appropriate security requirements. You don t shy away from getting hands on with application owners and developers to guide them or help them implement the necessary security controls. Through validation and testing you ensure that controls are implemented, and the requirements fulfilled. You support our becoming and existing Security Champions to succeed in their roles by guiding, identifying their skill gaps, and providing training. You might be an experienced security-minded software developer, or perhaps you are a cybersecurity professional who has specialized in application security. You can communicate with various audiences, and you can deal both with the big picture as well as with details when so required. The position is located in Pune, India. Responsibilities Act as a cybersecurity advisor and provide security expertise and guidance to development and operations teams. Conduct risk-based security impact assessments to classify applications and assign appropriate security requirements. Translate requirements into actionable tasks and guide stakeholders in understanding and implementing them. Detect security issues during validation and operation using automation and scenario-based testing. Help teams to understand and mitigate risks and vulnerabilities. Review and enhance security documentation and assessments from Security Champions, offering constructive feedback. Monitor R&D and IT stakeholder needs and deliver targeted security training or clinics. Collaborate within the Cybersecurity team to improve KONE s security management system, SDL standards, processes, and tools. Requirements 5+ years of experience in cybersecurity. CISSP, CSSLP or other relevant certifications are considered a plus. Educational qualifications (B. Sc. or M Sc. in computer science, business administration, information technology management, information systems security or related) Practical experience in implementing Security Development Lifecycle (SDL) in agile software projects (for example, Microsoft SDL, OWASP, BSIMM) Familiarity with security standards and best practices (for example: ISO 27001, IEC 62443, OWASP) Experience in threat modeling and security risk assessment Experience with DevSecOps practices and tools (SCA, SAST, DAST) Experience with cloud platforms (AWS or Microsoft Azure) Why to join KONE s cybersecurity team We at KONE s cybersecurity team are at an interesting point currently. Our focus has been on modernizing enterprise cybersecurity to limit risks with day-to-day operations but at the same time, we are building our industrial and product cybersecurity. KONE is on a digitalization journey and our elevators are transforming from a steel box on the end of a rope into central platforms of smart buildings. We are bringing totally new kinds of innovative solutions to the market to enable even smarter people flow. As our offering becomes more digital, excellent cybersecurity plays a crucial role in building customer trust. KONE Technology and Innovation We are changing and improving the way billions of people move within buildings every day. Hardware is where weve always shined, but today, digital expertise - IoT, analytics, AI, automation, simulation, to name a few - is equally important for our continued success. Whats KONE Technology & Innovation like as a workplaceWe like to think of ourselves as a diverse tribe, pulling together to understand and meet the ever-changing needs of our customers, from concept through to design, down to every single finished product. This all happens in an atmosphere of trust and respect, typified by our Nordic values, a healthy work-life balance, and a flat hierarchy. At KONE, we are focused on creating an innovative and collaborative working culture where we value the contribution of each individual. Employee engagement is a key focus area for us and we encourage participation and the sharing of information and ideas. Sustainability is an integral part of our culture and the daily practice. We follow ethical business practices and we seek to develop a culture of working together where co-workers trust and respect each other and good performance is recognized. In being a great place to work, we are proud to offer a range of experiences and opportunities that will help you to achieve your career and personal goals and enable you to live a healthy and balanced life. Read more on www. kone. com/careers

Job Title: Senior . NET Full Stack Developer - Azure Experience : 6-10 Yrs. Job Summary: We are seeking a highly skilled Senior . NET Full Stack Developer with expertise in building scalable, cloud-native applications using Microsoft Azure and modern web technologies. The ideal candidate will have strong experience in . NET Framework and . NET Core, micro-services architecture, and cloud services, combined with proficiency in front-end frameworks like Angular. Key Responsibilities: Design, develop, and maintain robust, scalable applications using C#, . NET Framework, and . NET Core. Develop and consume RESTful APIs and integrate with third-party services; knowledge of SOAP services is a plus. Build modern web applications using ASP. NET MVC, ASP. NET Core, and Angular. Implement micro-services using Azure Service Fabric (stateful/stateless), VM Scale Sets (VMSS), and Load Balancers. Work extensively with Azure cloud services including Azure Storage, Azure Cosmos DB, Azure SQL Database, Azure Cache for Redis, Event Hub, IoT Hub, and Service Bus. Develop server-less solutions using Azure Functions and deploy applications on Azure App Services. Manage source code repositories using Git (GitHub, GitLab, or Bitbucket) and implement DevOps best practices with CI/CD pipelines using Azure DevOps or Jenkins. Automate infrastructure deployment with ARM templates and PowerShell scripting. Collaborate with cross-functional teams to design cloud migration strategies and execute migration from on-premise or other cloud platforms to Microsoft Azure. Ensure application security by implementing authentication and authorization standards such as OAuth and JWT. Monitor and optimize application performance and scalability on Azure Kubernetes Service (AKS). Contribute to Power BI reporting and automation using PowerShell (desirable). Required Skills and Qualifications: Strong proficiency in C# and . NET Framework / . NET Core development. Experience with ASP. NET MVC, ASP. NET Core, and front end frameworks like Angular, React. Hands-on experience with micro-services architecture and Azure Service Fabric. Deep knowledge of Microsoft Azure cloud ecosystem and related services. Expertise in RESTful API design and development. Familiarity with version control tools such as Git and repository platforms like GitHub. Practical experience in DevOps, CI/CD pipelines, and infrastructure automation. Solid understanding of database technologies including SQL Server, Azure SQL, Cosmos DB, and ADO. NET/Entity Framework. Knowledge of security best practices in web and cloud development. Excellent problem-solving skills and ability to work collaboratively in an Agile environment. Nice to have: Experience with Power BI and automation using PowerShell. Familiarity with additional cloud platforms such as AWS or Google Cloud. Knowledge of container orchestration with Kubernetes (AKS).

Role & responsibilities Must have deep knowledge of Azure/AWS/GCP security technologies. Must have hand-on experience on implementing cloud native security controls. Must be able to write automation code in PowerShell. Cloud Security Engineer/Architect certification is must on any Cloud Platform. Must have hands on experience on Multi Cloud Security Posture / Architecture review & Assessment Must have hands on experience on Cloud Hosted Endpoint Security review and Assessment HIPS/Microsegmentation/Anti APT/Malware and other zero-day attack/Threat protection Must have good knowledge on Cloud Workload Protection Host/VM/Containers/Serverless security etc. Strong skills in Cloud Landing zone requirement. Comprehensive gap analysis in terms of governance, people, processes, technologies, platforms and data, operations, security controls between the present IT environment and the future envisaged environment along with systematic concrete action plan to close the gaps. Good skills on Cloud Based Risk Assessment Framework/plan creation and Recommendation for Optimization, various risks, and recommendation. Establish and maintain effective relationships with channel partners. Help build traction with born in cloud partners in the region. Keep up to date knowledge of Cloud Computing, DevOps Cloud Native technologies as well as the competitive position of the company. Strong understanding CASB cloud security solution and pre-plan account strategy. Preferred certifications like CCSP, CCSK, AWS, Azure, Google cloud professional certificate CompTIA Cloud+ (Good to have).

5 - 7 years of experience in a DevSecOps, Application Security, or DevOps Security role. Strong working knowledge of: Extensive experience in GitHub Enterprise and related security capabilities, specially security tool integrations and automations CI/CD pipeline integration of security tooling. Cloud platforms (AWS, Azure, GCP) and hands-on experience with CSPM solutions. Working experience in Application security tools (SAST, DAST, SCA, IaC) Sound working experience in scripting and programming languages Experience collaborating with software engineers, cloud teams, and SREs in a security capacity. Good understanding of OWASP Top 10, secure coding practices, and DevOps lifecycle. Proficient in scripting (e.g., Python, Bash) and automation (e.g., GitHub Actions, Terraform, Ansible).