Jobs

Interviews
Job Alerts
Tools

Upskill and Grow with AI

Mock Interview Practice interviews in realistic simulations

Coding Practice Improve your coding skills with challenges

Certification Earn certifications to validate your skills

AI Learning Get trained with AI expert sessions

Career Path AI insights for smarter career decisions

AI Job Match Score AI-Powered Job Match Against Your Resume and Optimize Your Resume

Career Tools and Resources

Resume Builder Build Professional Resume with Ease

ATS Friendliness Check Check Resume Friendliness for Applicant Tracking Systems

Auto Apply Apply to hundreds of jobs on any platform effortlessly

Co-Pilot (Chrome Extension) Your AI Assistant for Seamless Browsing Efficiency

Interview Questions Streamline interviews with ready-to-use questions

Salaries Discover market-driven salary insights across skillsets and geographies

Companies Explore leading companies actively hiring talent
For Employers

Home
>
Jobs in chennai
>
Elsevier
>
Software Engineer III

Software Engineer III

Elsevier

4 - 9 years

13 - 15 Lacs

chennai gurugram

Posted:1 day ago| Platform:

Apply

Skills Required

computer science backend coding testing tools network security open source operations analytics financial services python

Work Mode

Work from Office

Job Type

Full Time

Job Description

Key Responsibilities

Secure and maintain microservice applications and CI/CD pipelines
Implement DevSecOps strategy in existing and new projects.

Develop security controls to harden CI/CD pipelines and continuously improve application security posture.

Conduct threat modeling and security design reviews for new projects

Work with development teams to remediate vulnerabilities in applications

Monitor security events using SIEM tools (Grafana, Loki, Azure Sentinel)

Investigate and respond to security incidents and alerts

Conduct root cause analysis and implement preventive measures

Maintain incident response playbooks, procedures and security documentation

Establish secure coding standards and provide developer training

Integrate security gates into release pipelines (Dev Non-Prod Prod)

Requirements

Deep understanding of OWASP Top 10 and common vulnerability classes (injection, XSS, CSRF, etc.)

Working knowledge of security frameworks: NIST Cybersecurity Framework, CIS Benchmarks, MITRE ATT&CK

Strong grasp of the Secure Software Development Lifecycle (SSDLC) and security integration points

Understanding of common exploitation techniques and mitigation strategies

Experience with cloud IAM, network security groups, VPNs, and security policies

Knowledge of encryption standards, key management, and secrets handling (Azure Key Vault, AWS Secrets Manager, HashiCorp Vault, Akeyless)

Understanding of container security best practices (Docker, Kubernetes)

Familiarity with infrastructure as code security (Terraform, ARM templates)

Ability to read and review Java code for security vulnerabilities

Understanding of API security best practices (authentication, authorization, rate limiting, input validation)

Knowledge of authentication/authorization mechanisms (OAuth 2.0, SAML, JWT, OpenID Connect)

Experience with microservices security patterns (service mesh, mutual TLS, zero trust)

Familiarity with Spring Boot framework security features (Spring Security, etc.)

Strong proficiency with CI/CD security: GitHub, GitHub Actions

Experience integrating security tools into build pipelines (SAST, DAST, dependency scanning)

Proficiency with Git for version control and secure development workflows

Hands-on experience with security testing tools:

Required: Web app security testing (Burp Suite, OWASP ZAP, or equivalent)

Preferred: Network analysis (Wireshark, tcpdump), port scanning (Nmap), vulnerability scanning

Understanding of dependency scanning and software composition analysis (Dependabot, Snyk, etc.)

Experience with logging and SIEM platforms for security monitoring (we use Grafana, Loki, Azure Sentinel)

Ability to create security dashboards and alerts

Familiarity with log analysis and threat hunting techniques

Proficiency in at least one scripting language: Python, Bash, or PowerShell

Experience automating security testing, compliance checks, or vulnerability management

Strong communication skills, ability to explain security vulnerabilities and risks to both technical and non-technical audiences

Thrive in a distributed/remote team environment with minimal supervision

Stay current with emerging threats, vulnerabilities, and security best practices

Preferred Qualifications

Security certifications (CISSP, CEH, OSCP, Azure Security Engineer Associate)

Experience in insurance, financial services, or regulated industries

Knowledge of data privacy regulations and PII/PHI handling

Experience with Power BI security and row-level security (RLS)

Background in penetration testing or red team operations

Contributions to open-source security projects

Experience and Education

4+ years in Application Security, DevSecOps, or Software Engineering with demonstrated security focus

3+ years securing cloud environments (Azure preferred, AWS acceptable, multi-cloud experience a plus)

B.Sc. in Computer Science, Engineering, Cybersecurity, or equivalent practical experience with demonstrable security expertise (certifications, portfolio, contributions)

More Jobs at Elsevier

Associate Scientific Editor (Engineering)

Chennai, Tamil Nadu, India

5 - 8 yrs

Salary: Not disclosed

FPR&A Sr Analyst

Chennai, Tamil Nadu, India

5 - 8 yrs

Salary: Not disclosed

Architect

Bengaluru, Karnataka, India

Experience: Not specified

Salary: Not disclosed

Remote Intern

India

Experience: Not specified

Salary: Not disclosed

Senior Financial Analyst

Gurugram, Haryana, India

Experience: Not specified

Salary: Not disclosed

Mock Interview

Practice Video Interview with JobPe AI

Start Python Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.