744 Sast Jobs - Page 19

Project description Security is a global organization within Group Technology Infrastructure and Security Engineering. Our services focus on preventing and detecting cyber threats and securing our IT systems. We provide consolidated and reliable security services that implement secure design principles and create best-fit solutions.You will be working in the Cyber Hygiene Technology team, providing security products and services for the Cyber Hygiene space - specifically for Application Security and Penetration testing. We provide consolidated and reliable security hygiene controls to our clients using the latest technology.As a Tech Engineer, you will play a vital role in creating Infrastru...

The Senior Engineer, Product Security is responsible for conducting security assessments, implementing security best practices, and collaborating with product teams to ensure that our products meet the highest security standards. Job Description Perform security reviews and threat modeling of product features and architectures. Lead and execute comprehensive penetration testing of web applications, APIs, mobile applications. Provide security guidance and support to product teams throughout the software development lifecycle. Maintain security tooling (SAST, DAST, WAF etc.) and develop security guidelines and standards for product development. Research and evaluate new security technologies a...

Mandatory skillset Programming Languages: Proficiency in SQL and Python (Robot framework) for writing automated tests and conducting data validation. Experience in Test automation frameworks (e.g., Selenium or Postman) Experience in Jira tool or any other Test management tool Basic understanding of CI/CD tools like Jenkins, GitLab, AWS CodePipeline required. Responsibilities: Develop and maintain automated test scripts using SQL and Python to validate data accuracy across banking platforms. Implement and manage test automation frameworks with tools like Selenium and Postman to streamline testing processes and improve efficiency. Utilize AWS services (e.g., S3, EC2) for testing and ensure app...

Role & responsibilities Lead and execute VAPT across web, mobile, network, and OT environments Drive the implementation and analysis of SAST, DAST, and SCA tools across SDLC Architect and guide secure development and deployment practices Lead incident response simulations and vulnerability management programs Conduct security assessments and risk management for large-scale systems Support and guide ISO 27001 audits and implementation Should be capable of managing a high-performance team of 810 security analysts/engineers Preferred candidate profile Offensive Security Certified Professional (OSCP) or equivalent hands-on cert Advanced expertise in penetration testing tools and methodologies St...

As a DevSecOps Engineer with over 7 years of experience, you will play a crucial role in our team, primarily based in Bangalore / Mumbai, working in a hybrid mode with shift timings from 2 PM to 11 PM IST. Immediate joiners are preferred for this position. Your main responsibility will be to design, implement, and manage CI/CD pipelines using Azure DevOps while integrating security testing tools like SAST and DAST. You will conduct DevSecOps maturity assessments and guide development teams on secure coding practices, ensuring security is embedded throughout the software development life cycle. Key Responsibilities: - Design, implement, and manage CI/CD pipelines using Azure DevOps. - Integra...

As a highly skilled professional in the field of Information Security, you will play a crucial role in ensuring the secure development of software applications. With your University degree in computer science or IT and a minimum of 6 years of experience in Information Security, you will possess the necessary qualifications to excel in this role. Your expertise in Software Development Lifecycle (SDLC) security reviews, control environment evaluation, and design flaw assessments will be key in upholding the highest standards of security. Your responsibilities will include conducting internal and third-party Security Risk Assessments on critical assets, coordinating with project teams to enforc...

As a Junior Cybersecurity Engineer at Appzlogic, you will be responsible for leveraging your expertise in cybersecurity to protect our systems and data. With 2-5 years of experience in the field, you will operate at a mid-level capacity, conducting Penetration Testing, SAST, VAPT, and Ethical Hacking to identify and address vulnerabilities. Your proficiency in Networking Security, Cloud Security, Security Frameworks, Threat Modeling, and API Testing will be crucial in safeguarding our organization against cyber threats. In this full-time, permanent role based in Gurugram, you will be expected to work in person at our office. We are looking for candidates who can join immediately or within 15...

eInfochips, an Arrow company, is a global leader in providing product engineering and semiconductor design services. With over 25 years of experience and a team of 2500+ engineers, we have developed 500+ products deployed in 140 countries. Our services cover Silicon Engineering, Embedded Engineering, Hardware Engineering, and Digital Engineering, catering to 7 of the top 10 semiconductor companies globally. We are currently looking for a Senior IoT/Cyber Security Specialist with 5 to 12 years of experience, including a minimum of 5 years in secure software engineering. The position is based in Pune or Ahmedabad and requires a BE or MS in Electronics/Computer Engineering, with Cyber Security ...

Education : Bachelor's degree required. Security Expertise : Deep familiarity with OWASP Top 10 and other security concerns for web applications. Deep understanding of OWASP Application Security Verification Standards (ASVS) . In-depth understanding of SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing), and SCA (Software Composition Analysis) scanning practices. Tools and Experience : Experience using Veracode , Appscan , or other enterprise security tools for scanning. Understand how to interpret and assess CVEs (Common Vulnerability and Exposures) and CWEs (Common Weakness Enumeration) found by scanning tools. Familiarity with secret management systems ...

The ideal candidate should possess extensive knowledge of Core Java, Spring Boot, and web programming with at least 7 years of experience in software engineering. You should have excellent oral and written communication skills and be a great team player capable of working efficiently with minimal supervision. Preferred qualifications include expertise in cloud tracing, performance benchmarking for APIs, overall observability across APIs and events, idempotency across systems, data reconstruction using event sourcing, addressing vulnerabilities across the system, overall API security, SAST and DAST checks during the deployment pipeline, performance checks for APIs with database queries, valid...

You go all in no matter what you do, and so do we. You want to use your powers for good, and thats exactly what we do at Lytx. Our team is made up of hungry, humble, and capable people who are making a difference every day with technology that helps save lives each year. Reporting to the Director, Information Security the Senior Information Security Engineer will work with cross functional teams to advise and build security solutions across the Lytx ecosystem. This role expands the Lytx Security program by contributing to the design and implementation of security tools, security controls, and automation frameworks to ensure the integrity, availability, and confidentiality of Lytxs data and i...

Your Impact: We are OpenText-Fortify and we specialize in Enterprise Application Security. Our product helps you manage, measure and integrate security for the entire software lifecycle. What the role offers: Develops product architectures and methodologies for software applications design and development across multiple platforms and organizations within the Global Business Unit. Identifies and evaluates new technologies, innovations, and outsourced development partner relationships for alignment with technology roadmap and business value; creates plans for integration and update into architecture. Reviews and evaluates designs and project activities for compliance with development guidelin...

You will be responsible for performing automated testing of running applications and static code (SAST, DAST). Additionally, you will conduct manual application penetration tests on various platforms such as web applications, internal applications, APIs, internal and external networks, and mobile applications to identify and exploit vulnerabilities. Experience in mobile application testing, Web application pen testing, application architecture, and business logic analysis would be advantageous. You will need to utilize application tools like AppScan, NetsSparker, Acunetix, Checkmarx, Veracode, BurpSuite, OWASP ZAP, and Kali Linux to carry out security tests and should be capable of explainin...

You will be responsible for conducting comprehensive penetration testing, vulnerability assessments, and security reviews of applications, infrastructure, and networks. You are expected to identify, exploit, and document security vulnerabilities across systems and provide recommendations for remediation. Additionally, you will simulate advanced attacks to evaluate the effectiveness of security controls and pinpoint potential areas of compromise. Collaboration with development, infrastructure, and DevOps teams is essential to integrate security into the development lifecycle and ensure Infrastructure-as-Code (IaC) security. You will play a key role in developing detailed security test plans, ...

As a Performance Testing Load Runner professional with 6 to 8 years of relevant experience, you will play a crucial role in ensuring the quality and security of our banking products. Your primary responsibility will be to design and implement comprehensive test strategies that encompass functional, performance, security, and emerging testing techniques. Collaborating closely with cross-functional teams, you will strive not only to meet industry standards but also to set new benchmarks for quality and security. Your mandatory skills should include: - 3-5+ years of hands-on QA experience in the financial services or banking sector with a strong focus on cybersecurity - Proficiency in various t...

As a Cybersecurity Application Security Consultant with a focus on DevSecOps in Bhopal, Madhya Pradesh, you will play a crucial role in ensuring the secure design, development, and deployment of applications by integrating security measures across the SDLC. Your responsibilities will include integrating security into CI/CD pipelines, performing various security testing such as SAST, DAST, IAST, and SCA, conducting threat modeling and security architecture reviews, guiding teams on secure coding practices, and automating security testing using tools like Burp Suite, ZAP, Checkmarx, SonarQube, among others. Additionally, you will be involved in supporting incident response activities and maint...

Harness is a high-growth company that is disrupting the software delivery market. Our mission is to enable the 30 million software developers in the world to deliver code to their users reliably, efficiently, securely and quickly, increasing customers pace of innovation while improving the developer experience. We offer solutions for every step of the software delivery lifecycle to build, test, secure, deploy and manage reliability, feature flags and cloud costs. The Harness Software Delivery Platform includes modules for CI, CD, Cloud Cost Management, Feature Flags, Service Reliability Management, Security Testing Orchestration, Chaos Engineering, Software Engineering Insights and continues...

Were hiring on the Blackbaud Application Security team! As a member of the Cyber Security organization at Blackbaud, the Application Security Engineer is a specialized position that plays a key role in securing software built and/or used by Blackbaud. You can expect to work closely with software development teams as well as third-party organizations to ensure that security, privacy, and compliance requirements are planned for, designed, and built into software applications at Blackbaud. In addition to securing software, you will be expected to stay up to date on whats happening in the Cyber Security industry to optimize and align our application security processes and systems throughout the ...

As a Security Testing professional with 3-10 years of experience in SAST, DAST, API, Network, Mobile Security, DevSecOps, Cloud Security, Threat Modelling, Vulnerability Management, Logging & Audit, GRC, Security Operations, and IAM, you will be an integral part of the Infosys delivery team. Your main responsibility will be to ensure effective Design, Development, Validation, and Support activities, aiming to meet and exceed client expectations in the technology domain. Your role will involve gathering requirements and specifications to deeply understand client needs, subsequently translating them into system requirements. You will also play a crucial part in estimating work requirements acc...

Cowbell is signaling a new era in cyber insurance by harnessing technology and data to provide small and medium-sized enterprises (SMEs) with advanced warning of cyber risk exposures bundled with cyber insurance coverage adaptable to the threats of today and tomorrow. Championing adaptive insurance, Cowbell follows policyholders" cyber risk exposures as they evolve through continuous risk assessment and continuous underwriting. In its unique AI-based approach to risk selection and pricing, Cowbell's underwriting platform, powered by Cowbell Factors, compresses the insurance process from submission to issue to less than 5 minutes. Founded in 2019 and based in the San Francisco Bay Area, Cowbe...

As a Security Testing professional with 3-10 years of experience in SAST/DAST/API, Network, Mobile Security, DevSecOps, Cloud Security, Threat Modelling, Vulnerability Management, Logging & Audit, GRC, Security Operations, and IAM, your role as a part of the Infosys delivery team will encompass various responsibilities. Your main responsibility will be to ensure effective Design, Development, Validation, and Support activities to meet and exceed client expectations in the technology domain. This will involve gathering requirements and specifications to deeply understand client needs and translating them into system requirements. Additionally, you will be pivotal in estimating work requiremen...

Join us as an Application Security Consultant at Barclays, where you will play a key role in supporting the successful delivery of Location Strategy projects while adhering to plan, budget, agreed quality, and governance standards. You will be at the forefront of evolving our digital landscape, driving innovation, and ensuring excellence in our digital offerings to provide unparalleled customer experiences. To excel in this role, you should possess a strong understanding of CVEs, CWEs, and their impact on applications. Additionally, you must have in-depth knowledge of various AppSec technologies such as SAST, DAST, SCA, IAST, and RASP. Proficiency in at least one programming language and fra...

Organization: At CommBank, we never lose sight of the role we play in other peoples financial wellbeing. Our focus is to help people and businesses move forward to progress. To make the right financial decisions and achieve their dreams, targets, and aspirations. Regardless of where you work within our organisation, your initiative, talent, ideas, and energy all contribute to the impact that we can make with our work. Together we can achieve great things. Job Title: : Staff Security Engineer Location: Bangalore Business & Team: We&aposre building tomorrows bank today, which means we need creative and diverse engineers to help us redefine what customers expect from a bank. Envisioning new tec...

As a Security Specialist, your primary responsibility will be to design, install, and manage security mechanisms to safeguard networks and information systems from potential threats such as hackers, breaches, viruses, and spyware. You will play a crucial role in detecting, eradicating, and preventing security threats within the NT environment. In this role, you will be required to review malware and security events, conduct in-depth analysis, and determine the necessity for additional incident response actions by relevant parties. When security breaches occur, you will be responsible for responding to incidents, investigating violations, and proposing enhancements to address potential securi...

As an Automation Engineer, your role involves designing, developing, and implementing automated testing solutions to ensure the quality and reliability of software applications. Your responsibilities include scripting and coding by writing and maintaining automated test scripts using programming languages such as Python, Java, or others. You will collaborate with the development team to integrate automated tests into the continuous integration / continuous deployment (CI/CD) pipeline. In terms of test frameworks, you will be responsible for selecting and implementing appropriate test automation frameworks (e.g., Selenium, Cucumber BDD, JUnit) based on project requirements. Additionally, you ...