403 Dast Jobs - Page 7

PN: who are relevant & interested candidates can come for F2F interviews on Wednesday,20th Aug 25 btw 10:30am to 6:00pm, Venue details: Happiest Minds- SMILES 1,3rd & 4th Floor, SJR Equinox,Sy.No.47/8,Doddathogur Village,Begur Hobli,E- City Phase1,Hosur Road, Opposite to Velankani tech park,B-560100. . POC:-Sreenivas Please find below the JD for your reference, experience conducting Application Security assessments Experienced in conducting Manual and Automated DAST for Web, API & Thick client covering OWASP Top 10 Experienced in conducting Manual code review Experienced in Mobile VAPT (Both static and Dynamic) Knowledge of Infra VAPT or at least VA and configuration review Knowledge in Cont...

We are seeking an experienced Application Security Manager to lead our security initiatives and ensure the integrity, confidentiality, and availability of our systems and data. This role is crucial in safeguarding our digital assets and maintaining compliance with industry for - 1. To Integrate securitytools,standards,andprocessesintothe productlifecycle(PLC). 2. EnsurethatdevelopersandQApersonnelaretrainedwiththeappropriatele velofsecurityknowledgetoperformtheir dailyactivities. 3. Improveandsupportapplicationsecuritytooldeploymentsincludingstaticanal ysisandruntimetestingtools and securedevelopmentstandards. 4. Conduct and manage periodic penetration testing exercises through expert consul...

Skills Set: Must have Application Security(SAST,DAST,SCA), Container security, Infrstracture Security, DevSecOps, (Nexus Artifactory, Jfrog, Helm, SONAR Qube, Blackduck)-Any 2 tools Must have 6+ years of experience in Information Security domain Must have hands on experience on Triaging vulnerabilities of Prisma Cloud Twistlock 2+ years Must have hands on experience on vulnerability management & governance tool 2+ years OR Must have working experience in Vulnerability Management 5+ years OR experience working on DevSecOps (including tools) 3+ years Must be able to lead a team of 10+ members to oversee their work and deliverables Should have Clear understanding of Cloud Workload Protection Pl...

Job Description: We are seeking a highly skilled Application Security Engineer with a strong background in backend penetration testing, secure coding, and security architecture. The ideal candidate will have experience working in development and/or DevSecOps roles and be comfortable collaborating across engineering, operations, and security teams to drive secure software development practices. Key Responsibilities: Conduct penetration testing on applications and supporting infrastructure to identify and remediate security vulnerabilities. Perform security code reviews and provide guidance on secure coding practices to development teams. Collaborate in threat modeling, attack surface analysis...

Project description Security is a global organization within Group Technology Infrastructure and Security Engineering. Our services focus on preventing and detecting cyber threats and securing our IT systems. We provide consolidated and reliable security services that implement secure design principles and create best-fit solutions.You will be working in the Cyber Hygiene Technology team, providing security products and services for the Cyber Hygiene space - specifically for Application Security and Penetration testing. We provide consolidated and reliable security hygiene controls to our clients using the latest technology.As a Tech Engineer, you will play a vital role in creating Infrastru...

The Senior Engineer, Product Security is responsible for conducting security assessments, implementing security best practices, and collaborating with product teams to ensure that our products meet the highest security standards. Job Description Perform security reviews and threat modeling of product features and architectures. Lead and execute comprehensive penetration testing of web applications, APIs, mobile applications. Provide security guidance and support to product teams throughout the software development lifecycle. Maintain security tooling (SAST, DAST, WAF etc.) and develop security guidelines and standards for product development. Research and evaluate new security technologies a...

Mandatory skillset Programming Languages: Proficiency in SQL and Python (Robot framework) for writing automated tests and conducting data validation. Experience in Test automation frameworks (e.g., Selenium or Postman) Experience in Jira tool or any other Test management tool Basic understanding of CI/CD tools like Jenkins, GitLab, AWS CodePipeline required. Responsibilities: Develop and maintain automated test scripts using SQL and Python to validate data accuracy across banking platforms. Implement and manage test automation frameworks with tools like Selenium and Postman to streamline testing processes and improve efficiency. Utilize AWS services (e.g., S3, EC2) for testing and ensure app...

Role & responsibilities Lead and execute VAPT across web, mobile, network, and OT environments Drive the implementation and analysis of SAST, DAST, and SCA tools across SDLC Architect and guide secure development and deployment practices Lead incident response simulations and vulnerability management programs Conduct security assessments and risk management for large-scale systems Support and guide ISO 27001 audits and implementation Should be capable of managing a high-performance team of 810 security analysts/engineers Preferred candidate profile Offensive Security Certified Professional (OSCP) or equivalent hands-on cert Advanced expertise in penetration testing tools and methodologies St...

As a DevSecOps Engineer with over 7 years of experience, you will play a crucial role in our team, primarily based in Bangalore / Mumbai, working in a hybrid mode with shift timings from 2 PM to 11 PM IST. Immediate joiners are preferred for this position. Your main responsibility will be to design, implement, and manage CI/CD pipelines using Azure DevOps while integrating security testing tools like SAST and DAST. You will conduct DevSecOps maturity assessments and guide development teams on secure coding practices, ensuring security is embedded throughout the software development life cycle. Key Responsibilities: - Design, implement, and manage CI/CD pipelines using Azure DevOps. - Integra...

As a highly skilled professional in the field of Information Security, you will play a crucial role in ensuring the secure development of software applications. With your University degree in computer science or IT and a minimum of 6 years of experience in Information Security, you will possess the necessary qualifications to excel in this role. Your expertise in Software Development Lifecycle (SDLC) security reviews, control environment evaluation, and design flaw assessments will be key in upholding the highest standards of security. Your responsibilities will include conducting internal and third-party Security Risk Assessments on critical assets, coordinating with project teams to enforc...

This is an important role within the overall IT Risk Management function. You will be responsible for developing and reviewing processes and policies related to Bank Technology to identify, assess, and mitigate technology risks. Working closely with IT and Business teams, as well as other enabling functions, you will evaluate new and existing technologies and regulatory requirements from a risk assessment and mitigation perspective. You will collaborate with various functions to create assessment processes and checklists, review them periodically, and ensure their adherence by all stakeholders. Additionally, you will recommend Key Risk Indicators for the IT environment to maintain a robust f...

You will be responsible for performing automated testing of running applications and static code (SAST, DAST). Additionally, you will conduct manual application penetration tests on various platforms such as web applications, internal applications, APIs, internal and external networks, and mobile applications to identify and exploit vulnerabilities. Experience in mobile application testing, Web application pen testing, application architecture, and business logic analysis would be advantageous. You will need to utilize application tools like AppScan, NetsSparker, Acunetix, Checkmarx, Veracode, BurpSuite, OWASP ZAP, and Kali Linux to carry out security tests and should be capable of explainin...

You will be responsible for conducting comprehensive penetration testing, vulnerability assessments, and security reviews of applications, infrastructure, and networks. You are expected to identify, exploit, and document security vulnerabilities across systems and provide recommendations for remediation. Additionally, you will simulate advanced attacks to evaluate the effectiveness of security controls and pinpoint potential areas of compromise. Collaboration with development, infrastructure, and DevOps teams is essential to integrate security into the development lifecycle and ensure Infrastructure-as-Code (IaC) security. You will play a key role in developing detailed security test plans, ...

As a Performance Testing Load Runner professional with 6 to 8 years of relevant experience, you will play a crucial role in ensuring the quality and security of our banking products. Your primary responsibility will be to design and implement comprehensive test strategies that encompass functional, performance, security, and emerging testing techniques. Collaborating closely with cross-functional teams, you will strive not only to meet industry standards but also to set new benchmarks for quality and security. Your mandatory skills should include: - 3-5+ years of hands-on QA experience in the financial services or banking sector with a strong focus on cybersecurity - Proficiency in various t...

As a Cybersecurity Application Security Consultant with a focus on DevSecOps in Bhopal, Madhya Pradesh, you will play a crucial role in ensuring the secure design, development, and deployment of applications by integrating security measures across the SDLC. Your responsibilities will include integrating security into CI/CD pipelines, performing various security testing such as SAST, DAST, IAST, and SCA, conducting threat modeling and security architecture reviews, guiding teams on secure coding practices, and automating security testing using tools like Burp Suite, ZAP, Checkmarx, SonarQube, among others. Additionally, you will be involved in supporting incident response activities and maint...

As a Security Testing professional with 3-10 years of experience in SAST, DAST, API, Network, Mobile Security, DevSecOps, Cloud Security, Threat Modelling, Vulnerability Management, Logging & Audit, GRC, Security Operations, and IAM, you will be an integral part of the Infosys delivery team. Your main responsibility will be to ensure effective Design, Development, Validation, and Support activities, aiming to meet and exceed client expectations in the technology domain. Your role will involve gathering requirements and specifications to deeply understand client needs, subsequently translating them into system requirements. You will also play a crucial part in estimating work requirements acc...

Cowbell is signaling a new era in cyber insurance by harnessing technology and data to provide small and medium-sized enterprises (SMEs) with advanced warning of cyber risk exposures bundled with cyber insurance coverage adaptable to the threats of today and tomorrow. Championing adaptive insurance, Cowbell follows policyholders" cyber risk exposures as they evolve through continuous risk assessment and continuous underwriting. In its unique AI-based approach to risk selection and pricing, Cowbell's underwriting platform, powered by Cowbell Factors, compresses the insurance process from submission to issue to less than 5 minutes. Founded in 2019 and based in the San Francisco Bay Area, Cowbe...

As a Security Testing professional with 3-10 years of experience in SAST/DAST/API, Network, Mobile Security, DevSecOps, Cloud Security, Threat Modelling, Vulnerability Management, Logging & Audit, GRC, Security Operations, and IAM, your role as a part of the Infosys delivery team will encompass various responsibilities. Your main responsibility will be to ensure effective Design, Development, Validation, and Support activities to meet and exceed client expectations in the technology domain. This will involve gathering requirements and specifications to deeply understand client needs and translating them into system requirements. Additionally, you will be pivotal in estimating work requiremen...

Join us as an Application Security Consultant at Barclays, where you will play a key role in supporting the successful delivery of Location Strategy projects while adhering to plan, budget, agreed quality, and governance standards. You will be at the forefront of evolving our digital landscape, driving innovation, and ensuring excellence in our digital offerings to provide unparalleled customer experiences. To excel in this role, you should possess a strong understanding of CVEs, CWEs, and their impact on applications. Additionally, you must have in-depth knowledge of various AppSec technologies such as SAST, DAST, SCA, IAST, and RASP. Proficiency in at least one programming language and fra...

As a Security Specialist, your primary responsibility will be to design, install, and manage security mechanisms to safeguard networks and information systems from potential threats such as hackers, breaches, viruses, and spyware. You will play a crucial role in detecting, eradicating, and preventing security threats within the NT environment. In this role, you will be required to review malware and security events, conduct in-depth analysis, and determine the necessity for additional incident response actions by relevant parties. When security breaches occur, you will be responsible for responding to incidents, investigating violations, and proposing enhancements to address potential securi...

As an Automation Engineer, your role involves designing, developing, and implementing automated testing solutions to ensure the quality and reliability of software applications. Your responsibilities include scripting and coding by writing and maintaining automated test scripts using programming languages such as Python, Java, or others. You will collaborate with the development team to integrate automated tests into the continuous integration / continuous deployment (CI/CD) pipeline. In terms of test frameworks, you will be responsible for selecting and implementing appropriate test automation frameworks (e.g., Selenium, Cucumber BDD, JUnit) based on project requirements. Additionally, you ...

Position Purpose Provide a brief description of the overall purpose of the position, why this position exists and how it will contribute to achieving the teams goal. Responsibilities Direct Responsibilities Strong expertise in application security concepts and activities like Source Code Review (SAST) & Dynamic application vulnerability scanning (DAST). Good understanding of Information Security concepts and strategies. Knowledge of Secure Development methodologies and frameworks. Hands-on experience in penetration testing and tools like Apisan, WebInspect, Fortify, AppSpider, BurpSuite, Qualys, Checkmarx, Coverity Well-versed in conducting Security Review, Assessments and providing recommen...

Summary : As a Senior Product Security Engineer, you will join our team of talented professionals dedicated to embedding continuous and seamless security into our engineering processes. You will contribute to the development and implementation of our Secure Software Development Lifecycle (S-SDLC), working across multiple technical teams to enhance our security posture. About the role : Promote secure-by-design architectures and implementations across all phases of our S-SDLC. Define product security standards, best practices, and processes with built-in governance and metrics. Develop new security capabilities, patterns and automation to integrate security throughout our development practice...

As a Security Engineer at Pluang based in Gurgaon, you will play a crucial role in enhancing the investment experience for users by ensuring state-of-the-art security and reliability of the platform. Your responsibilities will include collaborating with software engineering teams, defining security requirements, participating in architecture discussions, and maintaining a vulnerability management program to identify security risks across various systems. Your expertise will be utilized in designing and developing automated solutions for security processes, implementing perimeter security measures, application security practices, cloud security controls, and threat detection mechanisms. Addit...

About The Role Job Title - Application security + Manager + Corporate Function Management Level :07 - Manager Location:Bangalore/ Hyderabad (Location flexible for right candidate) Must have skills: Application Security, Web application Scanning, API scanning, Mobile application scanning, SAST, DAST Strong understanding of threats, vulnerabilities, Risk prioritization, Application security design principles and best practices. Experience in designing and implementing Application security controls and frameworks. In-depth knowledge of security frameworks and standards (e.g., ISO 27001, NIST, OWASP). Hands-on experience with Application security tools and technologies. Good to have skills: Oper...