730 Sast Jobs - Page 4

Position Overview Job Title: INFSEC Senior Analyst Location: Pune, India Corporate Title: NCT Role Description Well versed with OWASP Top 10 Vulnerabilities identification and remediation. DAST (Dynamic analysis security testing) and SAST(Static analysis security testing) experience must be present. Vulnerability Assessment of reported issues. Provide remediation consultation to application teams. Basic guidance to application developers towards remediation of open findings. Experience in Service Now for incidents review. Tool scan configuration assistance and support to application teams Good communication and writing skills to work with global team members Experience in banking domain woul...

This job is with Marsh McLennan, an inclusive employer and a member of myGwork the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly. We are seeking a talented individual to join our Dev Ops team at Marsh McLennan. This role will be based in Pune. This is a hybrid role that has a requirement of working at least three days a week in the office. We Will Count On You To Conduct comprehensive security-focused pull request reviews across multiple applications and technology stacks Design, develop, and maintain reusable security libraries, frameworks, and boilerplate code for development teams Establish and enforce secure coding standards throu...

Role & responsibilities Develop, maintain, and optimize Python automation tools and scripts to streamline DevOps workflows. Design and implement CI/CD pipelines with embedded security checks and compliance controls. Automate infrastructure provisioning and configuration using Terraform , Ansible , or similar tools. Integrate tools for SAST , DAST , and dependency scanning into the CI/CD pipeline. Collaborate with cross-functional teams to ensure secure software delivery across the SDLC. Deploy and manage cloud-native applications on Azure or Google Cloud Platform (GCP) . Monitor system performance and enforce secure coding and deployment standards. Troubleshoot issues related to builds, depl...

Your key responsibilities Expertise In executing large scale application security programs Expertise in Shift left security concept and security in DevOps Understanding of agile software development principles and security practices Convey complex technical security concepts to technical and non-technical audiences including executives. Strong knowledge of software supply chain vulnerabilities and the ability to effectively communicate methodologies and techniques with development teams Provide technical leadership and advise to junior team members on application security engagements. Develop automated solutions that mitigate risks throughout the organization. Support policies and vulnerabil...

Seeking 8 contract resources in Hyderabad and Bangalore for performing SAST (Static application security testing), SCA (Software Composition Analysis) and DAST (Dynamic application security testing) to perform identification and remediation of vulnerabilities in Applications. About the Job:This position is a Contractor at Senior Specialist Cyber Security role for performing Application Security Testing in Cyber Security Organization. This profile will be passionate in preventing risk by performing remediation validation of vulnerabilities identified during the testing process. While doing so they will also be identifying vulnerabilities in the applications of the enterprise by configuring sc...

Description Cloud Engineer - GCP Strong expertise in cloud platforms engineering on GCP Strong experience with Service Orientated Architecture Cloud & Kubernetes Knowledge of one or more programming language such as Go Python or JavaScript Experience working with infrastructure as code config as code tooling and methodologies (i.e. Terraform etc) Experience with different Continuous Integration (CI/CD) tooling used at ANZ such as CodeFresh and Google Cloud Build Experience with different Monitoring and APM tools used at ANZ such as Prometheus Grafana Splunk and Dynatrace Experience or knowledge of Site Reliability Engineering practices. Experience building self-service alerting functionality...

Role: Sr. DevSecOps Engineer Location: Bangalore Working Hours: 12-9PM Working Model: Hybrid Intro: As a DevSecOps engineer, you will provide technical leadership in the DevSecOps areas of Vulnerability Scanning, Certificate Management, Password Policy Management, Infrastructure As code for Cloud Resource Provisioning, Data Analysis of security monitoring outputs, coordination of Remediation Patching, and other daily Security and Compliance efforts. Additionally, you will assist in developing an automated security framework for robust deployment tools and processes, leveraging various scripting languages and open-source solutions. Some of the things you will be doing: Familiarity with DevSec...

Job Role/Title : Senior DevOps Engineer Experience Range : 3 to 5 years Location : Bangalore Job Overview We are seeking a skilled and proactive DevOps Engineer to join our team. The ideal candidate will have hands-on experience with modern DevOps tools and practices, a strong background in automation and CI/CD, and a proven track record deploying and maintaining secure, scalable systems. Responsibilities You will work closely with development, QA, Infrastructure and security teams to streamline workflows, improve system reliability, and enforce best practices across our software delivery Responsibilities : Design, build, and maintain robust CI/CD pipelines using Azure DevOps. Manage and aut...

Description - External About Schneider Electric Schneider Electric's purpose is to empower all to make the most of our energy and resources, bridging progress and sustainability for all. We call this Life Is On . Our mission is to be your digital partner for Sustainability and Efficiency . We drive digital transformation by integrating world-leading process and energy technologies, end-point to cloud connecting products, controls, software and services, across the entire lifecycle, enabling integrated company management, for homes, buildings, data centers, infrastructure and industries. We are the most local of global companies . We are advocates of open standards and partnership ecosystems ...

Information Security Analyst / Specialist We are looking for a detail-oriented Information Security Analyst/Specialist to join our InfoSec team. The ideal candidate will ensure compliance with industry standards, strengthen security operations, manage risks, and collaborate across teams to safeguard our systems and data. Responsibilities Information Security Governance & Compliance Manage compliance with ISO 27001:2022 and SOC 2 Type II frameworks. Support ITGC audits in collaboration with Finance. Conduct internal audits, gap assessments, and evidence collection for certification and surveillance audits. Review and update ISMS policies, procedures, and controls regularly. Support customer a...

Role & responsibilities: As a Security Architect, you will play a key role in designing, securing, and advancing our enterprise security posture across cloud infrastructure, application development, and DevSecOps pipelines. Reporting directly to the CISO, this mid-career role offers the opportunity to drive impact across engineering, product, and operations, with a focus on enabling secure delivery at speed. Key Responsibilities Security Architecture & Engineering • Define and maintain security architecture blueprints for cloud (AWS, Azure) and hybrid environments • Provide strategic guidance for securing application code, APIs, container stacks, and CI/CD pipelines • Lead threat modeling, a...

About the Role We''re seeking a hands-on and detail-oriented Security and Compliance Engineer to drive security across our applications, infrastructure, and compliance programs-especially in a healthcare environment. This role combines security engineering, DevSecOps, and risk management with a strong focus on application, cloud, AI, and data security. You will work closely with engineering, DevOps, and compliance teams to embed security into the development lifecycle, support regulatory frameworks, and ensure cloud-native environments and AI technologies are secure by design. Responsibilities Conduct web and mobile application penetration testing, vulnerability scanning, and remediation sup...

Role Summary As a Lead DevSecOps Engineer, you will be responsible for embedding security practices within our DevOps processes. You'll work closely with development, operations, and security teams to ensure that security is built into our CI/CD pipelines, infrastructure, and applications from the ground up. Key Responsibilities Integrate security tools and practices into CI/CD pipelines. Automate security scans (SAST, DAST, SCA, container security etc.). Conduct threat modelling and security assessments on infrastructure and applications. Develop and enforce security best practices across development and deployment environments. Collaborate with development and operations teams to remediate...

We are seeking an experienced Application Security Manager to lead our security initiatives and ensure the integrity, confidentiality, and availability of our systems and data. This role is crucial in safe guarding our digital assets and maintaining compliance with industry 1. To Integrate securitytools, standards, and processes into the product life cycle(PLC). 2. Ensure that developers and QA personnel are trained with the appropriate level of security knowledge to performtheir daily activities. 3. Improve and support application security tool deployments including staticanal ysisandruntimetestingtools and securedevelopmentstandards. 4. Conduct and manage periodic penetration testing exerc...

Purpose/Objective The Quality Assurance Practice Lead is responsible for establishing and executing a comprehensive quality strategy to ensure the delivery of reliable, high-performing, and user-centric products. This position transcends traditional testing by integrating quality practices throughout the software development lifecycle — from design to deployment and beyond. The lead spearheads cross-functional quality initiatives, advocates for a shift-left approach, and fosters an organizational culture where quality is a shared responsibility. Responsibilities include overseeing test automation, performance engineering, release validation, and continuous integration practices. Collaboratin...

Azure native application development, Azure cloud native Azure Integration Services (Logic Apps, API Management, Service Bus Event Grid) Azure SQL Database, Azure Web Jobs, SQL Server, SQL Server, Azure Monitoring and application insights Azure Devops pipelines, SonarQube, SAST/DAST tools,REST, JSON, Message Queues

Description: Backend .NET API developer, C#, .NET,Web API, REST, JSON,Microservice, Azure Integration services, Logic Apps, Azure Service Bus, APIM, Azure Event Grid, Message Queues. Energy utility project experience,Integrations, Azure DevOps understanding,AMI headend, WOMS experience, Azure DevOps,SAST/DAST, REST,JSON, Integration design patterns, Experience integrating with AMI headend systems, Work order management, GIS location services, Outage Management systems. Named Job Posting (if Yes - needs to be approved by SCSC) Additional Details Global Grade : C Level : To Be Defined Named Job Posting? (if Yes - needs to be approved by SCSC) : No Remote work possibility : No Global Role Famil...

Cloud Engineer - GCP Strong expertise in cloud platforms engineering on GCP Strong experience with Service Orientated Architecture Cloud & Kubernetes Knowledge of one or more programming language such as Go Python or JavaScript Experience working with infrastructure as code config as code tooling and methodologies (i.e. Terraform etc) Experience with different Continuous Integration (CI/CD) tooling used at ANZ such as CodeFresh and Google Cloud Build Experience with different Monitoring and APM tools used at ANZ such as Prometheus Grafana Splunk and Dynatrace Experience or knowledge of Site Reliability Engineering practices. Experience building self-service alerting functionality on top of d...

Compliance and Regulatory including preferential allotment, IPO experience, ROC. Filing of statutory forms ( MGT7, AOC4, DIR12 with MCA. Should be able- to organize and coordinate Board Meetings including drafting agenda and minutes of meeting, resolutions. Stock exchange compliances including handling stock exchange disclosures under SEBI LODR, SAST, PIT and insider trading. Preparation of internal audits for secretarial audits. Support corporate governance and secretarial functions. Develop & Maintain up to date policies aligned with latest circulars. Familiarity with MCA21, BSE/ NSE portals, NSDL/ CDSL systems High level of integrity and professionalism. Companies Act, RBI. Immediate Join...

Level 2 Resource Source Code Review (SCR) Experience : 5-6 years Skills : Source Code Review, Multiple Languages, Checkmarx, SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT) Level 1 Resource Source Code Review (SCR) Experience: 2- 3 years Skills : Source Code Review, Checkmarx, SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT) The Source Code Review (SCR) Professional is responsible for analyzing, reviewing, and evaluating application source code to identify security vulnerabilities, coding errors, and adherence to best practices. This role ensures the integrity, security, and quality of software by performing thorough code assessments and working closely with development teams to imp...

Hi all , we are hiring for the role of Information Security Architect EXP : 6 -9 years Location : Bengaluru Role type : Hybrid Emp type : C2H ( 1 - YEAR EXTENDABLE ) Description: Information Security Architect Location: Bangalore, India Experience: Minimum 6 years in information/product security Role Overview Were seeking a senior Information Security Architect to design and implement security strategies throughout the full product lifecycle. This role will lead threat modelling, secure CI/CD initiatives, and act as a champion for product security within our engineering ecosystem. Key Responsibilities • Lead security architecture design across our product portfolio, spanning cloud-native and...

HCLSW seeks a Director, Head of Product & Application Security. The successful candidate will lead the end to end Product Security portfolio within HCL Software. Maintains and strengthens the risk posture across the organization through discovery and remediation of product security vulnerabilities and supply chain security. Establishes and communicates strategic vision for the programs, and ensures they align with development goals and opportunities. Leads a dynamic group of Application Security professionals worldwide, with expectations to expand team over time. This individual is also expected to contribute to additional tasks in a cross-functional security team, especially assisting the T...

We are seeking a skilled DevSecOps Engineer to integrate security practices into our DevOps processes. The ideal candidate will have experience in automating security controls, managing CI/CD pipelines, and ensuring compliance across cloud and on-prem environments. Role & responsibilities Proven expertise deploying one of the commercial container security products and closing the gaps through development, automation, API integrations, and researching and closing vulnerabilities via patching. Expertise in SAST and DAST Advanced expertise in securing containerized workloads (familiarity with Jenkins, Docker, Kubernetes/OpenShift/ROSA). Assist selecting and implementing tools that will elevate ...

RSM is seeking an experienced application penetration tester with expertise in both manual and automated testing to join our Security and Privacy Risk Consulting group. The ideal candidate will have a strong understanding of various testing methodologies and tools, as well as a passion for uncovering vulnerabilities and identifying potential security risks. This position will play a critical role in helping our clients prevent, detect, and respond to security threats affecting their critical systems and data. As a member of the Security, Privacy, and Risk Consulting team, you will help provide application security testing for our clients. Our team's goal is to empower both development and se...

Will be working on Application security testing Skills. Strategize and plan static and dynamic application security testing (SAST/DAST / SCA) tools. Will be responsible for Secure Coding Practices. Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise BE / B Tech in any stream, M.Sc. (Computer Science/IT) / M.C.A, with Minimum 5 plus years of experience Application Security TestingExperience with static and dynamic application security testing (SAST/DAST/ SCA) tools. Secure Coding PracticesKnowledge of secure coding standards (e.g., OWASP Top Ten) and experience in reviewing code for security vulnerabilities. Threat ModellingAb...