751 Sast Jobs - Page 24

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Static Application Security Testing (SAST) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply security skills to design, build, and protect enterprise systems, applications, data, assets, and people. Your typical day will involve collaborating with various teams to as...

Work within the Cyber security domain, focusing on the Automated security testing part of our services and improving overall security posture of products and systems for assigned business domain. You will be part of an agile team, constantly improving and automating the security posture of the cloud infrastructure. Perform threat modeling and security risk assessments. Utilizing CI/CD practices to Automate security testing tools like SAST (Static Application Security Testing), SCA (Software Composition Analysis), IaC scanning or Container scanning tools in GitHub, Azure DevOps etc You will build and operate reliable tooling to increase the visibility of cloud environments and remediate secur...

Role & responsibilities Strong knowledge of web application security testing, API security testing Strong knowledge of Industry standard application security tools Burp Suite, Nmap, Zap proxy Strong knowledge of Industry standard DAST tool (example: NetSparker) Strong knowledge in both static and dynamic assessments for desktop and mobile applications Strong knowledge in manual and automated testing process, focusing on OWASP methodology Strong Knowledge of vulnerability identification and remediation methodology. Knowledge of vulnerability assessments of network and security devices Strong knowledge of open source and commercial tools, proficient in Kali Linux based tools Mandatory skill se...

Greetings from Teamware Solutions a division of Quantum Leap Consulting Pvt. Ltd We are hiring a SAST, DAST Work Mode: Hybrid Locations: Bengaluru Experience: 3 -8 Years Notice Period: Immediate to 15 days Description: Roles and Responsibilities: Perform manual Application penetration testing against APIs (REST/SOAP), Web Applications, Mobile applications, and thick client applications Perform threat modeling, evaluate application business logic, and perform application architecture reviews Ability to demonstrate application testing experience in real time via demos to both internal and external audiences Act independently in penetration testing engagements, with minimal oversight and guidan...

Project Role : Security Delivery Practitioner Project Role Description : Assist in defining requirements, designing and building security components, and testing efforts. Must have skills : Static Application Security Testing (SAST) Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Delivery Practitioner, you will assist in defining requirements, designing and building security components, and testing efforts. A typical day involves collaborating with cross-functional teams to ensure security measures are integrated into the development process, conducting assessments to identify vulnerabilities,...

Key Responsibilities: Perform in-depth penetration testing, vulnerability assessments, and security reviews of applications, infrastructure, and networks. Identify, exploit, and document security vulnerabilities across systems and provide remediation recommendations. Simulate sophisticated attacks to test the strength of security controls and identify potential areas of compromise. Collaborate with development, infra, and DevOps teams to integrate security into the development lifecycle and Infrastructure-as-Code (IaC) security. Develop comprehensive security test plans, methodologies, and tools to ensure effective assessment of systems. Create detailed reports that outline vulnerabilities, ...

Greetings from Teamware Solutions a division of Quantum Leap Consulting Pvt. Ltd We are hiring an Associate Consultant_Penetration Testing_ Web Application Location: Bengaluru Work Mode: Hybrid; 2 days WFO Geography they support: US Shift Time: 12-9 PM Experience: 4 -9 Years Notice Period: Immediate to 15 days Requirements: Web Application Penetration Testing (Mandatory): Candidates must have strong experience in web application penetration testing. While a combination of web and mobile application testing is acceptable, their recent and primary experience should be focused on web applications. CSRF (Cross-Site Request Forgery) Boolean SQL Injection DOM XSS (Cross-Site Scripting) CSV Injecti...

6-9 years of software development experience, with 23 years in the automotive domain. Hands-on in SonarQube Administration : Integration with Jenkins, Git, GitLab, Maven, Gradle, Docker, Kubernetes CI/CD pipeline knowledge and DevOps best practices. User & permission management , License/plugin handling . Scripting knowledge: Shell, Python, Groovy . Performance tuning and scalability of SonarQube. Understanding of Linux/Windows servers and PostgreSQL . Expertise in Static Code Analysis , SAST , OWASP security standards. Experience configuring quality gates, rules, and code profiles . Familiarity with supported languages like Java, Kotlin, Python, Android . Role & responsibilities Preferred c...

My profile - linkedin.com/in/yashsharma1608 Walkin on 5th july - banglore Role - SonarQube Admin Experience - 6+ Years Client - MBRDI Location- Bangalore [on-site] Budget - 15L [Max] Job Description: * 6-9 years of software development experience along with 2-3 years of automotive domain experience * Experience in agile development environments. SonarQube Administration: * Proficiency in integrating SonarQube with tools like Jenkins, Git, GitLab, Maven, Gradle, Docker, Kubernetes, etc. * Strong knowledge of CI/CD pipelines and DevOps principles. * User and permission management * License and plugin management * Experience with scripting and automation (e.g., Shell, Python, Groovy). * Monitor...

Gist about our company: A leading venture capitalist (VC) in Silicon Valley commented that Evergent is a diamond in the rough. Evergent today manages over 560M+ user accounts in over 180+ countries on behalf of our customers. Globally Evergent is working with 5 of the top 10 carriers (AT&T, Etisalat, SingTel, Telkomsel, and AirTel) and 4 of the top 10 media companies (HBO, FOX, SONY and BBC). We are not surprised by the VC comment. We have done this with an amazing global team of 600+ professionals. Evergent is recognized as the global leader for Customer Lifecycle Management for launching new revenue streams without disturbing the inflexible legacy systems. The need for digital transformati...

Work Location- Gurugram(Sector-65) Mode- Hybrid Shift Timings- 10 AM IST to 7 PM IST Role & responsibilities Partner with US teams to provide security guidance as a subject matter expert around application security and operate YUM! application security services for the brand. Aligning with a risk-based approach, collaborate with third-party engineers, and product owners to identify, prioritise, and remediate vulnerabilities in mobile and web applications across YUM! systems. These include e-commerce websites, e-commerce mobile apps, and restaurant operations apps. Leveraging established YUM! security services, review vulnerability scanner reports/results and work with application and/or engi...

Skill required: Tech for Operations - Security Governance Designation: Security Delivery Associate Manager Qualifications: BE/Master of Engineering Years of Experience: 10 to 14 years About Accenture Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. Visit us at www.accenture.com What would you do You will be part of the Technology for Operat...

BMC Software is looking for a motivated and skilled individual to join the Product Security Group. This is a senior technical position in the team. The candidate will be responsible for engaging with various product teams on security architecture reviews, SaaS security, penetration testing. A penetration tester plays a crucial role in safeguarding an organization's digital assets and information by proactively identifying and addressing security weaknesses. This role requires a high level of technical expertise, ethical conduct, and a commitment to continuous improvement in the field of cybersecurity. Roles and Responsibilities: Conduct thorough vulnerability assessments of applications and ...

Job Purpose As a Senior DevSecOps Engineer, you will be responsible for integrating security into the development, deployment, and maintenance of our software products, ensuring the highest standards of security and reliability. Key Activities / Outputs • Develop and implement security solutions throughout the software development lifecycle, from design to deployment and maintenance, using methodologies such as STRIDE, DREAD, CVSS, and the OWASP ASVS. • Work closely with developers, IT operations, and security governance and operations teams to ensure security is integrated into all aspects of the development pipeline. • Automate security processes and tools to enable continuous integration,...

Role & responsibilities Project Management: Lead and manage multiple projects from inception to completion, ensuring timely delivery, budget adherence, and quality standards. Develop project plans, timelines, and resource allocation strategies. Coordinate with cross-functional teams including marketing, IT, and customer service to ensure seamless project execution. Technical Expertise: Work on .NET or JAVA-based applications, providing technical guidance and support. Implement and manage DevSecOps practices, integrating security into the CI/CD pipeline. Conduct security assessments, vulnerability scanning, and penetration testing. Develop and maintain security policies, procedures, and stand...

Education BE/BCA/B-TECH/Bsc.IT or any IT Graduate from authorised university Experience/ Qualifications Excellent written and verbal communication skills in English, high integrity, strong work ethic and ability to empathize with the customer. At least 8 - 15 years of Cyber Security experience with large organization, Bank, or global IT or consulting firm. Strong background of Application Security, Secure Software Development Lifecycle (SSDLC). Experience in Threat Modelling, Application Security Architecture Review, Security Testing- SCA, SAST, DAST. Exposure of security tools integration in DevOps architecture. Exposure of Microservices security and API security. Exposure implementation of...

Dear Candidate, We are hiring a Software Security Engineer to secure applications throughout the software development lifecycle. Ideal for developers with a strong grasp of secure coding and threat modeling. Key Responsibilities: Identify and remediate application-level vulnerabilities Conduct code reviews, static/dynamic analysis, and fuzz testing Collaborate with developers on secure architecture and coding practices Develop security tools, libraries, and automated scans in CI/CD pipelines Required Skills & Qualifications: Experience with secure coding in Java, Python, C/C++, or JavaScript Familiarity with OWASP Top 10, SAST/DAST tools (e.g., SonarQube, Veracode) Understanding of authentic...

Dear Candidate, We are hiring a Cloud Security Specialist to secure cloud infrastructure and applications across AWS, Azure, or GCP. Ideal for professionals skilled in cloud-native security controls and monitoring. Key Responsibilities: Implement cloud security policies, IAM, and encryption Monitor cloud environments for threats and misconfigurations Conduct security assessments and remediation Collaborate with DevOps and compliance teams on secure deployments Required Skills & Qualifications: Experience with AWS, Azure, or GCP security services (e.g., GuardDuty, Security Center) Knowledge of network security, IAM, and cloud audit logs Familiarity with DevSecOps practices and IaC security sc...

Senior Security Consultant (Secure Code Review + Web Application Penetration Testing). NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance, so businesses can protect what matters most. NetSPI secures the most trusted brands on Earth through Penetration Testing as a Service (PTaaS), External Attack Surface Management (EASM), Cyber Asset Attack Surface Management (CAASM), and Breach and Attack Simulation (BAS). Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI brings a proactive approach to cybersecurity with more clarity, speed, and scale than ...

What You'll Do. Join us in building a secure, scalable, and experienced platform to support Avalara's expanding business and global customer base. As a Senior Application Security Engineer, you'll work with world-class engineers and architects to ensure security is embedded in everything we build—both in today's systems and the future of our architecture. This role is perfect for someone passionate about automation, cloud-native security, and AI-driven application defense.. You'll help shape the future of Avalara Security, driving security as code, ensuring automation-first practices, and integrating modern AI tooling into security workflows. You understand the value of developer empathy, mo...

At FourKites we have the opportunity to tackle complex challenges with real-world impacts. Whether its medical supplies from Cardinal Health or groceries for Walmart, the FourKites platform helps customers operate global supply chains that are efficient, agile and sustainable. Join a team of curious problem solvers that celebrates differences, leads with empathy and values inclusivity. We are seeking an experienced Security Engineer with a strong background in DevOps, DevSecOps, and cloud infrastructure management. The ideal candidate will have hands-on expertise in AWS, GCP, Azure, and microservices architecture, combined with a deep understanding of security principles and best practices. ...

Position Purpose Provide a brief description of the overall purpose of the position, why this position exists and how it will contribute in achieving the teams goal. Responsibilities Direct Responsibilities Direct Responsibilities - To perform Penetration testing (Gray Box and/or Black Box) for Web applications; Thick Client, API, and mobile applications. - To understand the applications security requirements and identify & document the scope of the test - Ensure execution of the documented security scenarios for the application under test. - Document and report all findings - Collaborate with the developers to help them understand the vulnerabilities reported in application - Escalate issue...

Position Purpose Provide a brief description of the overall purpose of the position, why this position exists and how it will contribute in achieving the teams goal. Responsibilities Direct Responsibilities Direct Responsibilities - To perform Penetration testing (Gray Box and/or Black Box) for Web applications; Thick Client, API, and mobile applications. - To understand the applications security requirements and identify & document the scope of the test - Ensure execution of the documented security scenarios for the application under test. - Document and report all findings - Collaborate with the developers to help them understand the vulnerabilities reported in application - Escalate issue...

OPENTEXT OpenText is a global leader in information management, where innovation, creativity, and collaboration are the key components of our corporate culture. As a member of our team, you will have the opportunity to partner with the most highly regarded companies in the world, tackle complex issues, and contribute to projects that shape the future of digital transformation. Your Impact: Fortify is the industry-leading provider of Application Security solutions that empower organizations to develop secure software. Fortify offers a comprehensive portfolio of application security solutions with the flexibility of testing on-premise and on-demand to cover the entire software development life...

1. Experience in the following process areas: Secure SDLC Methodologies for Waterfall/ Agile software development (Mandatory) Should be well-versed with Security best practices like OWASP and NIST guidelines (Mandatory) Ability to perform security review of microservices architecture, API Security (Mandatory) Hands on experience on Source Code reviews - SAST solution (Mandatory) Hands on experience on Dynamic Application Security Testing - DAST (Mandatory) Hands on experience in Software Composition Analysis - SCA (Mandatory) Hands on experience in performing Tech Stack Review -(Mandatory) Comfortable working in an environment that practices Agile development, engaging Product Owner and othe...