142 Owasp Top Jobs

Job Summary Experience with Android (OS and apps) Java Experience in Android Application development Analyze Android apps(APK) including binaries Identify mobile threats and classify them Reverse Engineering of malicious binaries Experience of Reverse Engineering on Android application Packages (APKs) Malware analysis experience with swift detection techniques of analyzing malicious binaries Responsibilities Good to have understanding or experience of PHA (Potentially Harmful applications) classification on android platform 3 years of relevant work experience including experience Reverse Engineering and code-level security auditing as well as experience handling obfuscated code Assembly lang...

Title and Summary Information Security Engineer II 1. Overview We are seeking a skilled and experienced security professional to manage and enhance our web application security infrastructure. The ideal candidate will bring expertise in application and network security, with a strong foundation in managing WAF platforms such as Imperva. This role requires a deep understanding of modern security frameworks, cloud environments, and incident response practices to ensure robust protection across systems. 2. Role Manage and optimize the Imperva Web Application Firewall (WAF) or similar platforms. Conduct application security assessments aligned with OWASP Top 10 and other industry standards. Admi...

5+ years of hands-on experience in Web App Pentesting or Offensive Security. Strong understanding of: OWASP Top 10 HTTP/HTTPS protocols Web technologies (HTML, JavaScript, REST APIs, etc.) Proficient with tools such as: Burp Suite Pro, OWASP ZAP Nmap, Nikto, Dirbuster, etc. SQLmap, wfuzz, ffuf, etc. Experience with bug bounty platforms or CVE submissions is a plus. Ability to write custom scripts in Python, Bash, or similar for testing automation. Excellent communication and documentation skills.

We are seeking a skilled DevSecOps Engineer with 4 to 5 years of expertise in Application Security, SAST, and SCA tools . The ideal candidate will collaborate closely with development and DevOps teams to integrate security seamlessly into the CI/CD pipeline, identify and eliminate false positives, and drive vulnerability remediation across multiple business applications. Hands-on experience in Snyk or equivalent platforms will be a significant advantage. Key Responsibilities: Implement and maintain SAST and SCA tools within the CI/CD pipeline for continuous code scanning. Analyze scan results, validate and triage false positives, and ensure accuracy of reported vulnerabilities. Collaborate w...

Job Description Technical/Solutions architect is responsible to create and execute ways to improve an organization's technological framework, focus on developing best practices, integrations patterns and oversee architecture domains like application, data, and technology and ensure they align with an organization's standards. Responsibilities Technical/Solutions Architect Must have 12+ years of relevant IT experience in Architecture, Application Design and Development using both backend and frontend preferred .net with angular. MUST have hands on experience on building & architecting medium to large applications. Ability to produce POCs that can be used by project teams. Ability to produce a...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Web Application Firewall (WAF) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are looking for an experienced and technically strong Web Application Firewall (WAF) Subject Matter Expert (SME) to join our Security Delivery team. The ideal candidate will possess deep expertise in WAF ...

Short Description In your role, you will work in a cross-functional project team dedicated to enhancing the security of our API services within the bank's IT infrastructure. You will join a dynamic environment where you as a developer will be involved with designing and creating patterns, integrations and tools that benefit our API Security capabilities. Works in the area of Software Engineering, which encompasses the development, maintenance and optimization of software solutions/applications. Applies scientific methods to analyse and solve software engineering problems. He/she is responsible for the development and application of software engineering practice and knowledge, in research, de...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Application Security Architecture and Design Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are looking for a Technical Lead with strong expertise in Application and Infrastructure Security to lead a suite of security services including vulnerability management, application securi...

Conduct end-to-end VAPT on web, mobile, network, cloud, APIs & servers. Analyze and prioritize vulnerabilities. Perform manual testing to find logic flaws. Red Teaming Enhance VAPT methods and stay updated on exploits. Required Candidate profile Candidate should have VAPT skills using tools like Burp Suite, Nmap, Metasploit, and Kali Linux. Must know OWASP Top 10, detect logic flaws, and write reports. CEH/eJPT/OSCP preferred.

Job Purpose Information security team member (with skip level reporting to CISO) who is proficient in maintaining & managing Source Code Security and SBoM (Software Bill of Material). Information Security tool management & governance. Understanding of regulatory requirements. Driving information Security projects & Monitoring Key Risk Indicators (KRIs) for Software Security. Duties and Responsibilities ‚Minimum required Accountabilities for this role 1. Secure Code Review and Vulnerability Remediation Perform and drive regular secure code reviews for web, Android, and iOS applications to proactively identify security weaknesses. Provide actionable remediation guidance and ensure timely track...

Position Purpose The purpose of the position is to help with the security testing activities mentioned in the direct responsibilities. Responsibilities Direct Responsibilities To perform Penetration testing (Gray Box and/or Black Box) for Web applications, Mobile, API, and thick client applications. Hands-on mobile penetration tester with strong knowledge and experience in Android and iOS application security testing (both static and dynamic), responsible for discovering, validating and reporting security issues in mobile applications. Perform Static analysis (SAST) and Dynamic analysis (DAST) on Android APKs and iOS IPA to identify insecure storage, hardcoded secrets, insecure configuration...

Position Purpose Provide a brief description of the overall purpose of the position, why this position exists and how it will contribute in achieving the teams goal. Responsibilities Direct Responsibilities Direct Responsibilities - To perform Penetration testing (Gray Box and/or Black Box) for Web applications; Thick Client, API, and mobile applications. - To understand the applications security requirements and identify & document the scope of the test - Ensure execution of the documented security scenarios for the application under test. - Document and report all findings - Collaborate with the developers to help them understand the vulnerabilities reported in application - Escalate issue...

Oktas Workforce Identity Cloud Security Engineering group is looking for an experienced and passionate software security engineer to join a team focused on designing and developing Security solutions to harden our frameworks & infrastructure. We embrace innovation and pave the way to transform bright ideas into excellent security software solutions that help run large-scale, mission-critical software. We encourage you to prescribe defense-in-depth measures, industry security standards, enforce the principle of least privilege to help take our Security posture to the next level. Our Security engineering team has a niche skill-set that combines Security domain expertise with the ability to des...

Oktas Workforce Identity Cloud Security Engineering group is looking for an experienced and passionate software security engineer to join a team focused on designing and developing Security solutions to harden our frameworks & infrastructure. We embrace innovation and pave the way to transform bright ideas into excellent security software solutions that help run large-scale, mission-critical software. We encourage you to prescribe defense-in-depth measures, industry security standards, enforce the principle of least privilege to help take our Security posture to the next level. Our Security engineering team has a niche skill-set that combines Security domain expertise with the ability to des...

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Palo Alto Networks Firewalls Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :Looking for a detail-oriented and experienced Network Security Senior Analyst to manage, monitor, and optimize the security of our network perimeter. You will be responsible for implementing and maintaining firewall rules, e...

Project Role Security Architect Project Role Description Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills Palo Alto Networks Firewalls Good to have skills NA Minimum 3 year(s) of experience is required Educational Qualification 15 years full time education Summary :Looking for a detail-oriented and experienced Network Security Senior Analyst to manage, monitor, and optimize the security of our network perimeter. You will be responsible for implementing and maintaining firewall rules, ensuring c...

Information Security Consultant (APPSEC) Information Security Consultant (APPSEC) Location: Noida Job Description Key Responsibilities Conduct advanced security assessments of client Web Application, APIs, mobile applications, and thick client applications. Perform Static Application Security Testing (SAST) using industry-leading tools. Utilize OWASP methodologies to identify and mitigate vulnerabilities. Develop and maintain security testing plans, procedures, and tools. Stay updated with the latest security trends, vulnerabilities, and threats relevant to application security. Qualifications Bachelors degree in Computer Science, Information Security, or related field. 3+ years of experienc...

+5yrs exp in VAPT, pref in both application & infrastructure testing -certification is must any-Burp Suite Certified Professional / GWAPT/ OSWE / OSWA -Sollid knwdg of OWASP Top 10, SANS 25 & CVSS scoring. -Remote shift 1pm-10 pm -max 30days joiners Required Candidate profile Need who can join in 15-20days and open to work in 1pm-10pm shift. strong exp in VAPT and certification is must

Role & responsibilities Strong proficiency in Core Java, Spring Boot, RESTful APIs, and Microservices architecture. Experience implementing security frameworks such as Spring Security, OAuth2, JWT, and SAML. Good understanding of OWASP Top 10, secure coding standards, and common attack vectors (e.g., XSS, SQL Injection, CSRF). Familiarity with DevSecOps practices, code scanning tools (e.g., SonarQube, Fortify, Veracode). Experience with encryption techniques, SSL/TLS, Key Management, and identity management systems. Knowledge of cloud platforms (AWS/Azure/GCP) and their security services is a plus. Strong analytical, problem-solving, and debugging skills.

At EY, youll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you And were counting on your unique voice and perspective to help EY become even better, too Join us and build an exceptional experience for yourself, and a better working world for all, Attack & Penetration Testing Senior As part of our Cyber Security team, you shall perform penetration testing which includes internet, intranet, wireless, web application, social engineering and physical penetration testing You shall also perform in-depth analysis of penetration testing results and create report that describes findings, exploitat...

Summary: We are looking for an experienced Embedded and Application Penetration Tester to join our Product Cybersecurity team. In this role, you will be responsible for conducting comprehensive security assessments of our products including embedded devices, web applications, thick-client applications, and mobile applications. Experience & Qualifications: Bachelor's degree in computer science, cybersecurity, or a related field 4 - 6 years of experience in embedded/IoT system, web applications, AI models and network penetration testing. Hands-on experience in embedded systems security testing including firmware security, secure configuration analysis, secure boot, physical port testing (USB, ...

Job Description Technical/Solutions architect is responsible to create and execute ways to improve an organization's technological framework, focus on developing best practices, integrations patterns and oversee architecture domains like application, data, and technology and ensure they align with an organization's standards. Responsibilities Technical/Solutions Architect Must have 12+ years of relevant IT experience in Architecture, Application Design and Development using both backend and frontend preferred .net with angular. MUST have hands on experience on building & architecting medium to large applications. Ability to produce POCs that can be used by project teams. Ability to produce a...

Key Responsibilities: Programming & Automation: Develop and maintain security automation scripts, tools, and integrations in languages such as Python, Go, JavaScript, or Bash . Create CI/CD security gates using tools like GitHub Actions, GitLab CI, Jenkins, or CircleCI . Build custom security testing scripts or utilities to supplement commercial tools. Automate compliance evidence gathering, scanning, and reporting. DevSecOps Integration: Champion security automation and CI/CD pipeline integration for static/dynamic scanning, secrets detection, etc. Educate developers on secure coding practices and provide guidance during architecture/design discussions. Application Security: Lead threat mod...

Key Responsibilities: Programming & Automation: Develop and maintain security automation scripts, tools, and integrations in languages such as Python, Go, JavaScript, or Bash . Create CI/CD security gates using tools like GitHub Actions, GitLab CI, Jenkins, or CircleCI . Build custom security testing scripts or utilities to supplement commercial tools. Automate compliance evidence gathering, scanning, and reporting. DevSecOps Integration: Champion security automation and CI/CD pipeline integration for static/dynamic scanning, secrets detection, etc. Educate developers on secure coding practices and provide guidance during architecture/design discussions. Application Security: Lead threat mod...

The opportunity As a Manager in the Cyber Security Team, you will contribute technically to client engagements and services development activities. An important part of your role will be to actively establish, maintain and strengthen clients relationships. You will also identify potential business opportunities for EY within existing engagements and escalate these as appropriate. You will be responsible for overall client service quality delivery in accordance with EY quality guidelines methodologies. You will need to manage accounts and relationships on a day-to-day basis and explore new business opportunities for the firm. Establishing, strengthening and nurturing relationships with client...