1040 Sast Jobs - Page 7

HMH is a learning technology company committed to delivering connected solutions that engage learners, empower educators and improve student outcomes. As a leading provider of K12 core curriculum, supplemental and intervention solutions, and professional learning services, HMH partners with educators and school districts to uncover solutions that unlock students potential and extend teachers capabilities. HMH serves more than 50 million students and 4 million educators in 150 countries. HMH Technology India Pvt. Ltd. is our technology and innovation arm in India focused on developing novel products and solutions using cutting-edge technology to better serve our clients globally. HMH aims to ...

Position Overview: We are seeking a highly skilled Product Security Officer who will champion security throughout the product lifecycle. This role is responsible for safeguarding our platforms, applications, and data while guiding teams to adopt secure engineering practices. The ideal candidate combines strong technical security expertise(3-5 years of experience) with strategic influence, ensuring our products deliver exceptional value without compromising protection or trust. About the Role The Product Security Officer functions as both architect and guardian, embedding security-by-design principles within product development. You work closely with Product Management, Engineering, QA, Archi...

Hiring!! Location: Bangalore Experience: 3+ Years Work Mode: Hybrid(10 Days WFO in a month) Interview Process: Level 1: Virtual Level 2: Face-to-Face (F2F) Role Overview Were looking for a skilled Penetration Tester with strong expertise in Web, Mobile, API, and Thick Client testing. The ideal candidate should have deep knowledge of application security engineering and the ability to collaborate closely with development and DevOps teams. Direct Responsibilities Perform Gray Box / Black Box Penetration Testing for Web Apps, Mobile Apps, APIs & Thick Client Apply security engineering principles (secure build, secure code review, SDLC security) Work with DevOps security tools across CI/CD pipel...

Penetration Tester / Application Security Tester Experience: 3+ Years Location: Bangalore Work Mode: (Add your mode if needed Hybrid/WFO/WFH) Direct Responsibilities Perform Penetration Testing (Gray Box / Black Box) for Web Applications, Thick Client, APIs, and Mobile Applications . Apply deep knowledge of Application Security Engineering , including secure development practices, secure build processes, secure code review, and security testing. Work with DevOps security tools , including scanning, SAST/DAST, and CI/CD security processes. Use scripting languages for automation and custom security checks . Collaborate closely with developers to help them understand and remediate reported vuln...

SUMMARY Software Developer PRIMARY LOCATION: India - Bengaluru Description We are seeking a senior technical leader to lead our Application Security and Developer Enablement efforts. The ideal candidate will have a strong background in Application Security and mindset of Developer Enablement. The Vice President will be responsible for building and maintaining a robust security posture, partnering with cross-functional teams, and driving application security excellence across the firm. The role requires technical leadership and guidance to application security team of 4 engineers. As technical expert, hands on experience to design application security systems, perform technical analysis and o...

Who We Are: As the leader in cloud-managed IT, Cisco connects passionate people to their mission by simplifying the digital workplace. Our impact is driven by the innovative, purposeful, and vibrant people who make up our inclusive community. When technology is intuitive, our customers can focus on what matters! About The team: As a member of the Device Trust Assurance team, you will have a substantial impact on the security of millions of Cisco devices all around the world. We are looking for people who are passionate about security and eager to learn the ropes of vulnerability management (reporting, triaging and driving remediation). About The Role: As a Product Security Engineer, you will...

Join our digital revolution in NatWest Digital X In everything we do, we work to one aim. To make digital experiences which are effortless and secure. So we organise ourselves around three principles: engineer, protect, and operate. We engineer simple solutions, we protect our customers, and we operate smarter. Our people work differently depending on their jobs and needs. From hybrid working to flexible hours, we have plenty of options that help our people to thrive. This role is based in India and as such all normal working days must be carried out in India. Job Description Join us as a Principal Engineer This is a challenging role that will see you design and engineer software with the cu...

Apply now Apply Now Start applying with LinkedIn Please wait... Date: Nov 20, 2025 Location: PUNE, MH, IN Company: HMH HMH is a learning technology company committed to delivering connected solutions that engage learners, empower educators and improve student outcomes. As a leading provider of K12 core curriculum, supplemental and intervention solutions, and professional learning services, HMH partners with educators and school districts to uncover solutions that unlock students potential and extend teachers capabilities. HMH serves more than 50 million students and 4 million educators in 150 countries. HMH Technology India Pvt. Ltd. is our technology and innovation arm in India focused on d...

Role Overview: BMC Helix is seeking a motivated and skilled individual to join the Product Security Group as a senior penetration tester. In this role, you will engage with various product teams on security architecture reviews, SaaS security, and penetration testing to safeguard the organization's digital assets and information. Your expertise in identifying vulnerabilities and weaknesses through thorough vulnerability assessments and executing penetration tests will be crucial in ensuring the security of BMC's products and systems. Key Responsibilities: - Conduct thorough vulnerability assessments of applications and systems using various tools and techniques. - Execute penetration tests t...

Role Purpose The purpose of this role is to design the organisation’s computer and network security infrastructure and protect its systems and sensitive information from cyber threats This role is responsible for providing strong security and remediation services to meet project requirements. Good experience in Java/ .Net and secure code review. Apply security best practices while designing and proposing solutions to enterprise customers. Solid competencies in information security processes, framework, and technologies, such as: Application Vulnerability Assessment, Penetration Testing, Ethical Hacking, OWASP Top 10, NIST, OSSTMM, OSINT etc. Good understanding of supported frameworks and cle...

Are you a highly skilled Security Developer with a passion for building secure solutions and staying ahead of evolving threats Join Ivanti to help safeguard our software applications and deliver robust, secure IT Service Management platforms for organizations worldwide. Your expertise will protect data, prevent breaches, and ensure compliance across cloud and on-prem environments. Why this role matters As a Security Developer, you'll be key to embedding security throughout our software development lifecycle. By collaborating across teams, you'll make sure our products meet the highest standards of security and reliabilitydirectly influencing how global businesses experience Ivanti's trusted ...

Role summary: Own and elevate both day-to-day security operations and forward-looking security architecture for a large telecom environment. Run high-availability security programs (e.g., SOC, EDR, AppSec, VAPT) with operational rigor, while designing next-gen controls for emerging platforms and threats (e.g., AI security, post-quantum cryptography, cloud-native). A. Technical Accountabilities Security Operations (Always-On) 1.a Oversight and strategic guidance for a 247 SOC with tiered response, playbooks, KPIs, and continuous tuning of SIEM/SOAR. 1.b Drive endpoint protection and EDR , threat intel, incident handling , and post-incident RCA with measurable MTTA/MTTR improvements. Applicati...

Hardware Penetration Tester - 4+yrs - Python/Firmware extraction/JTAG,UART, SPI-testing Who We Are: As the leader in cloud-managed IT and networking, Cisco connects passionate people to their mission by simplifying the digital workplace. Our impact is driven by the innovative, purposeful, and vibrant people who make up our inclusive community. When technology is intuitive and secure, our customers can focus on what matters! About The Team: Join our Device Penetration Testing team, where your expertise will directly strengthen the security of millions of Cisco devicesfrom embedded systems to global cloud platforms. Here, youll collaborate with security professionals recognized for leading har...

What You'll Do Avalara is seeking a Security Engineer to join our Application Security team. In this role you will be tasked with designing, implementing and deploying security engineering tooling for our code scanning and web scanning pipelines. You will help us scale the traditional application security mode of code auditing into automated pipelines to find security vulnerabilities such as XSS, SSRF, RCE, CSRF and SQLi across Avalaras code base. You will leverage your software skills and security knowledge to help uplift the security posture of our products and services. You will report into the Senior Manager of Application Security. What Your Responsibilities Will Be Design, build and de...

Responsibilities: Build and integrate Python-based security tools and scanners into our Dockerized pipelines and backend. Work with cross functional team to convert techniques into reliable, repeatable tooling.

You will be responsible for the following tasks in this Cloud Security role located in Bangalore, India: - Build prototypes and proofs of concept on AWS or Azure services to showcase security value - Implement DevSecOps tools and techniques for clients - Continuously enhance your skills and self-develop Qualifications required for this position are as follows: - Minimum 5 years of information security experience - At least 2 years of application security experience - Minimum 2 years of cloud security and DevOps experience - Background in secure application design - Familiarity with cryptographic tools and APIs - Proficiency in SAST/DAST skills - Working knowledge of CI/CD pipelines - Experie...

Job Description: As a Senior QA Engineer at our company, you will be responsible for owning test automation across data/ETL pipelines, APIs, and web frontends. Your role will involve designing robust QA strategies, building CI/CD-native test suites, driving performance/load testing, and converting system requirements into executable and measurable test plans. Key Responsibilities: - ETL/Data Quality Automation: - Design and automate tests for ingestion, transformation, and loading including schema checks, constraints, null/dup checks, reconciliation, and row/column-level validation. - Implement data contract and data lineage test coverage, ensuring verification of CDC/merge logic and dedup r...

You have a minimum of 7 years of experience as a penetration tester with proven abilities in approaching black box and white box testing. Your work profile includes hands-on experience in manual penetration testing. You are familiar with using vulnerability scanners such as Burp Suite, Checkmark, OWASP ZAP, Nmap, Nessus, and Metasploit Framework. Additionally, you have practical experience in API penetration testing of Rest/SOAP based interfaces. Your knowledge of OWASP methodology and web vulnerabilities is extensive, allowing you to easily explain and demonstrate how they work. You are proficient in Python or any other scripting language and are comfortable working in Linux/Unix environmen...

Summary Position Summary Manager Sr. DevSecOps, Product & Engineering (PxE) As a Sr. DevSecOps Engineer, you will actively engage in your engineering craft, taking a hands-on approach to multiple high-visibility projects. Your expertise will be pivotal in delivering solutions that delight customers and users, while also driving tangible value for Deloitte's business investments. You will leverage your extensive DevSecOps engineering craftsmanship and advanced proficiency across multiple programming languages, DevSecOps tools, and modern frameworks, consistently demonstrating your exemplary track record in delivering high-quality, outcome-focused CI/CD and automation solutions. The ideal cand...

Role Summary: As a Cloud/Infrastructure Security Engineer at JioStar, you will design, implement, and maintain secure cloud and infrastructure solutions to safeguard our large-scale, cloud-native streaming ecosystem. This role requires strong expertise in cloud security, DevSecOps practices, and the ability to collaborate across engineering, operations, and security teams to ensure robust security across all layers of our platforms Key Responsibilities: Support the design and implementation of security configurations across public cloud platforms (AWS, GCP, Azure), including IAM, security groups, WAFs, and other built-in security services Contribute to securing hybrid infrastructure environm...

We are seeking an experienced QA Automation Engineer to design, implement, and maintain test automation for a React Native-based POS platform running on PAX E700 smart terminals and Android/iOS softPOS devices. The ideal candidate has strong mobile automation experience, API validation expertise, and is comfortable supporting accessibility and security testing cycles. Key Responsibilities: Design and implement automated test scripts for mobile POS workflows using Appium, WebDriverIO, or other relevant tools. Develop reusable test frameworks and integrate with CI/CD pipelines for continuous test execution. Maintain automated regression test suites covering key POS flows, peripheral interactio...

Skills: Source Code Review, Checkmarx, SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT) Required Skills Strong knowledge of secure coding standards (OWASP, CERT, SEI, MISRA, etc.). Experience with SAST tools (Fortify, Checkmarx, SonarQube, Veracode, etc.). Ability to review and understand complex source code across multiple languages. Familiarity with common security vulnerabilities (OWASP Top 10, CWE, SANS Top 25). Understanding of software architecture, APIs, microservices, and cloud-native development. Strong analytical and communication skills to translate findings into developer-friendly remediation steps.

Source Code Review (SCR) Source Code Review, Multiple Languages, Checkmarx, SonarQube, A (CEH/OSCP/SANS25/LPT/CEPT) We are seeking a highly skilled Source Code Review (SCR) Consultant with expertise in multiple programming languages and hands-on experience using leading code analysis tools such as Checkmarx and SonarQube. The ideal candidate should have a strong background in application security, secure coding practices, and vulnerability identification/mitigation. Candidates with certifications like CEH, OSCP, SANS25, LPT, CEPT will be given preference. Key Responsibilities Perform manual and automated source code reviews across multiple programming languages. Utilize tools such as Checkma...

Responsibilities: Perform source code reviews (manual + automated) across diverse technologies. Utilize tools like Checkmarx, SonarQube, Fortify, or Veracode for SAST analysis. Identify, prioritize, and report security vulnerabilities with actionable remediation guidance. Collaborate with developers, architects, and security teams to improve secure coding practices. Contribute to Secure SDLC and DevSecOps initiatives. Stay updated on OWASP Top 10, SANS25, CWE, and emerging threats . Requirements: 5-6 years of experience in application security & source code review . Proficiency in multiple programming languages ( Java, .NET, Python, JavaScript, C/C++ ). Strong hands-on experience with Checkm...

Job Description Roles & Responsibilities : Design, implement, and maintain secure CI/CD pipelines ensuring supply chain integrity. Develop and manage automation frameworks leveraging infrastructure-as-code (IaC). Integrate and optimize tools like Terraform, Jenkins, and NixOS to enhance security and efficiency. Implement and maintain security tooling for code, build, and deployment pipelines. Collaborate with cross-functional teams to ensure security practices are embedded throughout the development lifecycle. Manage and optimize cloud-based solutions to support scalable and secure delivery processes. Proactively identify, mitigate, and monitor risks related to supply chain vulnerabilities. ...