Role Overview: As an Application Security Specialist at Coredge.io, you will be responsible for embedding security into the development lifecycle of cutting-edge cloud-native and edge computing applications. You will collaborate with cross-functional teams to ensure secure design, development, and deployment of software products. Key Responsibilities: · Lead the design and implementation of secure software development lifecycle (SSDLC) practices across product teams. · Conduct threat modelling and secure code reviews for applications built on Coredge platforms. · Integrate security tools (SAST, DAST, SCA) into CI/CD pipelines using DevSecOps practices and have a strong understanding of secure GitHub, Docker Hub etc. · Collaborate with developers to remediate vulnerabilities and promote secure coding. · Perform penetration testing and vulnerability assessments on web, mobile, and microservices-based applications. · Define and enforce application security policies aligned with Coredge’s product architecture. · Monitor emerging threats and recommend proactive security measures. · Lead incident response for application-level security breaches. · Collaborate with product managers and architects to ensure security requirements are embedded in product design. · Conduct regular security training and awareness sessions for developers and QA teams. · Evaluate and implement new security tools and technologies to enhance application security posture. · Maintain a vulnerability management program for applications, including tracking, reporting, and remediation. · Work with legal and compliance teams to ensure applications meet regulatory requirements (e.g., GDPR, HIPAA, DPDP). · Participate in bug bounty programs and coordinate with external researchers to validate and remediate findings. · Develop and maintain security dashboards and metrics to report on application security health. · Contribute to open-source security initiatives and represent Coredge.io in industry forums. Preferred Qualifications: · Bachelor’s or Master’s degree in Computer Science, Information Security, or related field. · 8–10 years of experience in application security, software development, or penetration testing. · Strong understanding of OWASP Top 10, SANS CWE Top 25, and secure coding practices. · Hands-on experience with DevSecOps, container security (Kubernetes, Docker), and Infrastructure as Code (Terraform, CloudFormation). · Hands-on experience with tools like SonarQube, Trivy, Burp Suite, Checkmarx, Veracode, Kali Linux and GitLab CI/CD. · Proficiency in languages such as Java, Python, Go, or JavaScript. · Experience with DevSecOps and integrating security into Agile/DevOps workflows. · Knowledge of regulatory and compliance standards (e.g., PCI-DSS, HIPAA, GDPR). · Mandatory Certifications such as CEH, OSCP, or GWAPT are highly desirable (Any two of them). Show more Show less

Role Overview As an Application Security Specialist at Coredge.io, you will be responsible for embedding security into the development lifecycle of cutting-edge cloud-native and edge computing applications. You will collaborate with cross-functional teams to ensure secure design, development, and deployment of software Responsibilities : Lead the design and implementation of secure software development lifecycle (SSDLC) practices across product teams. Conduct threat modelling and secure code reviews for applications built on Coredge platforms. Integrate security tools (SAST, DAST, SCA) into CI/CD pipelines using DevSecOps practices and have a strong understanding of secure GitHub, Docker Hub etc. Collaborate with developers to remediate vulnerabilities and promote secure coding. Perform penetration testing and vulnerability assessments on web, mobile, and microservices-based applications. Define and enforce application security policies aligned with Coredges product architecture. Monitor emerging threats and recommend proactive security measures. Lead incident response for application-level security breaches. Collaborate with product managers and architects to ensure security requirements are embedded in product design. Conduct regular security training and awareness sessions for developers and QA teams. Evaluate and implement new security tools and technologies to enhance application security posture. Maintain a vulnerability management program for applications, including tracking, reporting, and remediation. Work with legal and compliance teams to ensure applications meet regulatory requirements (e.g., GDPR, HIPAA, DPDP). Participate in bug bounty programs and coordinate with external researchers to validate and remediate findings. Develop and maintain security dashboards and metrics to report on application security health. Contribute to open-source security initiatives and represent Coredge.io in industry Qualifications : Bachelors or Masters degree in Computer Science, Information Security, or related field. 8 to 10 years of experience in application security, software development, or penetration testing. Strong understanding of OWASP Top 10, SANS CWE Top 25, and secure coding practices. Hands-on experience with DevSecOps, container security (Kubernetes, Docker), and Infrastructure as Code (Terraform, CloudFormation). Hands-on experience with tools like SonarQube, Trivy, Burp Suite, Checkmarx, Veracode, Kali Linux and GitLab CI/CD. Proficiency in languages such as Java, Python, Go, or JavaScript. Experience with DevSecOps and integrating security into Agile/DevOps workflows. Knowledge of regulatory and compliance standards (e.g., PCI-DSS, HIPAA, GDPR). Mandatory Certifications such as CEH, OSCP, or GWAPT are highly desirable (Any two of them). (ref:hirist.tech)

We're looking for a strategic thinker with deep hands-on expertise in GRC, cloud security technologies, and Focus Areas : Governance, Risk & Compliance (40%): Implement security frameworks (ISO 27001, NIST), conduct risk assessments, ensure regulatory compliance (GDPR, HIPAA, PCI-DSS). Security Operations (40%): Deploy cloud-native security controls, integrate DevSecOps, perform threat modeling and vulnerability assessments. Reporting & Documentation (20%): Create executive-level reports, maintain security architecture docs, support audits. What Were Looking For Bachelors or Masters degree in Computer Science, Information Security, or related field. 8 to 10 years of experience in cybersecurity with at least 5 years in cloud security. Strong knowledge of AWS, Azure, and/or GCP security services. Hands-on experience with security tools: Next Gen Firewalls, SIEM, SOAR, CSPM, DLP, EDR, etc. Hands-on experience with DevSecOps, container security (Kubernetes, Docker), and Infrastructure as Code (Terraform, CloudFormation). Hands-on experience with various VA/PT tools including open source like OpenVas/OWASP Zap/Veracode/Nessus/Qualys etc. Certifications (Preferred) Cloud Security: CCSP, AWS Security Specialty, Azure Security Engineer Associate, GCP Professional Cloud Security Engineer (any one of them) General Security & Compliance: CISA/ISO 27001 Lead Implementer/Auditor (any one of them) (ref:hirist.tech)

Company Description Coredge is a solutions-focused company leveraging AI, cloud, and other digital technologies to solve complex industry challenges. We enable clients to thrive in the digital era by providing innovative solutions that drive efficiency and growth. Our expertise lies in applying advanced technologies to deliver customized, effective results. At Coredge, we are committed to helping our clients navigate and succeed in an ever-evolving digital landscape. Role Description This is a full-time, on-site role for an Application & a Cloud Security Specialist located in Noida. The both Application & Cloud Security Specialist will be responsible for providing application support, troubleshooting technical issues, and delivering technical support to ensure the security of our cloud infrastructure. Daily tasks include analyzing security measures, identifying vulnerabilities, and implementing security protocols. The specialist will also communicate with internal and external stakeholders to ensure the highest level of security and support for our applications and cloud services. Cloud Security Specialist (4–6 Years) Location: Noida | Reports to: Head/CISO Cyber Security 🎯 Primary Role: Secure and govern cloud infrastructure across AWS, Azure, and GCP, ensuring compliance, risk mitigation, and operational security. 🔍 Key Responsibilities: GRC (50%): Define cloud security policies, conduct risk assessments, ensure compliance (ISO 27001, DPDP, GDPR, HIPAA). Security Operations (35%): Implement IAM, SIEM, WAF, CSPM; respond to incidents; integrate DevSecOps in CI/CD. Reporting (15%): Create dashboards, document architecture, track remediation. 🛠️ Must-Have Skills: Cloud security (AWS/Azure/GCP) DevSecOps, Kubernetes, Docker, Terraform Tools: SIEM, WAF, CSPM, VA/PT (e.g., Nessus, OWASP Zap) 📜 Preferred Certifications: Cloud: CCSP / AWS / Azure / GCP Security Compliance: CISA / ISO 27001 Lead Implementer ✅ Application Security Specialist (6–8 Years) Location: Noida | Reports to: Head/CISO Cyber Security 🎯 Primary Role: Embed security into the SDLC of cloud-native applications, ensuring secure design, development, and compliance. 🔍 Key Responsibilities: AppSec (80%): Lead SSDLC, threat modeling, secure code reviews, CI/CD security (SAST, DAST, SCA), pen testing, vulnerability management. GRC (20%): Ensure app compliance (GDPR, HIPAA, DPDP), support audits, align with ISO 27001, PCI-DSS. 🛠️ Must-Have Skills: Secure coding (Java, Python, Go, JS) DevSecOps, Kubernetes, Docker, Terraform Tools: SonarQube, Burp Suite, Veracode, GitLab CI/CD 📜 Mandatory Certification: CEH / OSCP / GWAPT (any one) 📧 Apply Now: Send your resume to hr@coredge.io #CyberSecurityJobs #ApplicationSecurity #CloudSecurity #NoidaJobs #HiringNow #TechCareers

Cloud & Compliance Security Specialist (4–6 Years Experience) Job Title: Cloud & Compliance Security Specialist Experience Required: 4–6 Years Location: Noida Job Type: Full-Time Department: Cyber Security Reporting to: Head/CISO Cyber Security. Role Overview: We are seeking a highly experienced and detail-oriented Cloud & Compliance Security Specialist to join our cybersecurity team. The ideal candidate will have a strong background in Governance, Risk, and Compliance (GRC), security technologies, and reporting/documentation. This role demands a strategic thinker with hands-on expertise in securing cloud environments across Various Cloud platforms. Key Responsibilities: 1. Security Technology & Operations – 50% · Design and implement cloud-native security controls and architectures (e.g., IAM, encryption, firewalls, WAFs, SIEM, CSPM, CWPP). · Monitor and respond to cloud security incidents using industry-standard tools and platforms for threat detection and analysis. · Integrate DevSecOps practices into CI/CD pipelines to ensure secure code deployment. · Perform threat modeling, vulnerability assessments, and penetration testing of cloud infrastructure. · Collaborate with DevOps and IT teams to ensure secure configuration and hardening of cloud resources. 2. Governance, Risk & Compliance (GRC) – 35% · Develop, implement, and maintain overall organizational security policies, standards, and procedures including Cloud security aligned with industry frameworks (e.g., ISO 27001, NIST, CIS, CSA). · Conduct risk assessments and cloud security audits to identify gaps and recommend mitigation strategies. · Ensure compliance with regulatory requirements such as DPDP, GDPR, HIPAA, PCI-DSS, and local data protection laws. · Collaborate with internal audit and legal teams to manage third-party risk assessments and vendor security reviews. · Lead security awareness and training programs across the organization. 3. Reporting & Documentation – 15% · Prepare detailed security reports, dashboards, and metrics for executive leadership and stakeholders. · Maintain comprehensive documentation of cloud security architecture, incident response plans, and audit findings. · Track and report on remediation efforts and risk mitigation progress. · Support internal and external audits with accurate and timely documentation. Required Skills & Qualifications: Bachelor’s or Master’s degree in Computer Science, Information Security, or related field. 4–6 years of experience in cybersecurity with at least 4 years in cloud security. Strong knowledge of AWS, Azure, and/or GCP security services. Hands-on experience with security tools: Next Gen Firewalls, SIEM, WAF, CSPM, EDR, etc. Hands-on experience with DevSecOps, container security (Kubernetes, Docker), and Infrastructure as Code (Terraform, CloudFormation). Hands-on experience with various VA/PT tools including open source like OpenVas/OWASP Zap/Veracode/Nessus/Qualys etc. Certifications (Preferred): Cloud Security: CCSP, AWS Security Specialty, Azure Security Engineer Associate, GCP Professional Cloud Security Engineer (any one of them) General Security & Compliance: CISA/ISO 27001 Lead Implementer/Auditor (any one of them)

We are seeking a highly skilled and motivated L3 DevOps Support Engineer to join our team. The ideal candidate will have at least 3 years of DevOps experience and a strong technical background in Linux, Kubernetes, monitoring tools, and automation. The role involves deploying, monitoring, and managing infrastructure and applications to ensure optimal performance and reliability. Responsibilities Linux Administration: Work with Linux-based systems to deploy and manage applications. Troubleshoot Linux-related issues to ensure high availability and performance. Maintain system stability, security, and performance tuning. Kubernetes (K8s) Deployment and Debugging (Must Have): Deploy, configure, and maintain Kubernetes clusters. Debug issues related to Kubernetes environments, including container orchestration and service failures. Ensure seamless containerized application deployments and scaling. Monitoring and Observability (Must Have): Implement, configure, and maintain Prometheus and Grafana for system and application monitoring. Develop and maintain real-time Grafana dashboards for critical insights. Troubleshoot system performance and application issues using monitoring data Cloud Knowledge: Understand cloud-based environments and basic cloud computing principles. Work with cloud services for infrastructure management and monitoring. Assist in troubleshooting cloud-related issues when required. Horizon Portal (Good to Have): Gain an understanding of the Cloud/Horizon portal for managing project-related tasks. Monitor and track cloud-based infrastructure using Horizon. Utilize the portal for operational insights and incident management. CronJobs and Automation: Set up, manage, and troubleshoot CronJobs for automating scheduled tasks. Ensure automated tasks execute as planned and investigate failures. Enhance automation processes to optimize system operations. Requirements Bachelor's degree in computer science, Information Technology, or a related field (or equivalent experience). Minimum 3 years of experience in a DevOps Support Engineer role. Strong expertise in Linux system administration. Hands-on experience with Kubernetes deployment, debugging, and troubleshooting. Proficiency in Prometheus and Grafana for monitoring and dashboard management Basic knowledge of cloud computing environments. Experience with the Horizon portal (preferred but not mandatory). Strong scripting and automation skills (Shell, Python, or Ansible is a plus) Ability to work independently and handle production incidents with minimal supervision. Excellent troubleshooting and analytical skills. This job was posted by Gunjan Bharti from CorEdge.