165 Veracode Jobs

Join us as a DevOps Engineer" at Barclays, where you'll spearhead the evolution of our digital landscape, driving innovation and excellence You'll harness cutting-edge technology to revolutionise our digital offerings, ensuring unapparelled customer experiences You be assessed on the key critical skills relevant for success in role, such as experience with, skills to meet business requirement as well as job-specific skillsets To be successful as a DevOps Engineer", you should have experience with: Basic/ Essential Qualifications Must be graduate/ must have bachelors degree Experience as a DevOps Engineer on large, complex applications in enterprise environment Experience in using Jenkins as ...

Job Title: .NET Developer Role Summary Looking for a .NET Developer to work on a Security Remediation & Tech Debt project, focusing on fixing security vulnerabilities, dependency upgrades, and improving code quality. Mandatory Skills C#, .NET / .NET Core, ASP.NET Core REST Web APIs , Microservices Security tools: Veracode, SonarQube (SAST), CVE/CVSS Dependency management: NuGet CI/CD: Azure DevOps / GitHub Actions Testing: xUnit / NUnit / MSTest Hosting: IIS / Windows / containers Vulnerability remediation & scan report analysis Debugging & troubleshooting (build/runtime issues, logs, stack traces) Good to Have Core .NET API design & versioning Secure coding (OWASP) Legacy code refactoring &...

Manage organization's compliance with the Sarbanes Oxley Act. Develop processes to ensure compliance with all SOX requirements. Design and administer internal controls over financial reporting relating to IT automated controls. Report test results to the Global IT General Controls Lead and Management. Review test findings, facilitate remediation of control gaps, and escalate possible critical issues to senior management. Stay updated on changes in SOX regulations for timely compliance. Identify areas of improvement for key processes and procedures and support their management. Maintain and update internal SOX compliance records. Collaborate with different business owners on implementing, exe...

As a Technical Lead MERN Full Stack at our company, your role will involve collaborating with clients and cross-functional teams to design, develop, and deliver scalable, secure, and cloud-native applications. You should possess deep technical expertise in React.js, Node.js, Azure cloud infrastructure, and microservices architecture, along with strong leadership and communication skills. Key Responsibilities: - Engage with clients, product owners, and onshore teams to gather requirements, analyze business needs, propose effective solutions, and drive full-cycle implementation. - Lead the design, development, deployment, and maintenance of full-stack applications using React.js, Node.js, and ...

As an IT Security Senior Analyst at our company, you will play a crucial role in ensuring the security of our systems and applications. Your primary responsibility will be to perform penetration testing (PT), Static Application Security Testing (SAST), and articulate the findings in a clear and understandable manner to the asset owners. Therefore, strong collaborative skills are essential for this role. **Responsibilities:** - Building a Secure Development Lifecycle (SDLC) by integrating SAST, Software Composition Analysis (SCA), Dynamic Application Security Testing (DAST), and penetration testing into the development pipeline. - Conducting penetration testing on various components including...

Education/Certifications: Bachelors degree in Engineering or a Technical Field. Experience: 5+ years of experience in application security, product security, or secure software engineering. Experience with AppSec tools: SAST (Veracode, Checkmarx, GitHub Advanced Security), DAST (Burp, ZAP), SCA (Snyk, Mend), and IaC scanning (Checkov, Prisma, Wiz) Cloud-native security: AWS, Azure, or GCP securing APIs, containers, and serverless workloads, Product/IoT security:, Secure firmware design, code signing, encryption, and OTA update protection. Knowledge, Skills, and Abilities: Proficiency in at least one programming language (Python, Java, C/C++, or JavaScript). Knowledge of modern frameworks and...

Role & responsibilities Technical Skills Must Have Hands-on expertise with a continuous integration system (for example, TeamCity) and a continuous delivery system (for example, Octopus Deploy), including reusable templates and quality gates. Proficiency with modern Git workflows (for example, Bitbucket), including branching strategy, protection rules, and code-owner boundaries. Strong background in Amazon Web Services application delivery (compute, containers, networking, identity and access management) and infrastructure as code (for example, CloudFormation or Terraform). Experience integrating code and dependency scanning into pipelines using a commercial or open-source platform (for exam...

As an Application Security Engineer, your role will involve supporting the setup, integration, and daily operations of application security scanning within CI/CD pipelines. You will work closely with development and security teams to ensure vulnerabilities are identified, tracked, and remediated. Key Responsibilities: - Identify applications, repositories, and pipelines that require security scanning. - Assist with creating Veracode accounts and configuring user access. - Run initial scans and help establish a security baseline. - Support Veracode integration with CI/CD tools (Jenkins, Azure DevOps, GitHub). - Help configure scanning policies, thresholds, and automated workflows. - Guide dev...

As an experienced cybersecurity professional, you will be responsible for conducting penetration testing and vulnerability assessments, focusing on web applications and external network security. Your key responsibilities will include: - Utilizing industry-standard tools and technologies for web application and external network penetration testing - Proficiency in Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST), with development experience preferred - Familiarity with OWASP Testing Guide/Open Source Security Testing Methodology Manual - Holding certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), C...

As a Software Engineer - .Net at Barclays, your role involves independently producing requirements breakdowns, writing user stories, and managing the delivery in accordance with Business requirement design. You will ensure all requirements traceability is factored into design/code/test deliverables. Additionally, you will identify and manage necessary controls/RAIDS and assist in diagnosing system problems encountered during various phases. Documenting functional specifications and changes and maintaining the application knowledge repository are also part of your responsibilities. Key Responsibilities: - Produce requirements breakdowns and write user stories - Manage the delivery in accordan...

As a .Net Software Engineer at Barclays, you will be responsible for supporting the successful delivery of location strategy projects to plan, budget, agreed quality, and governance standards. You will spearhead the evolution of the digital landscape, driving innovation and excellence to ensure unparalleled customer experiences. **Key Responsibilities:** - Strong understanding of OOPs and Design Patterns. - Knowledge of Dot net framework 3.5 and above, C#, WPF, and MVVM. - Experience in Python coding and deployments. - Deployment process knowledge using Bit Bucket, GitHub, Veracode, and SonarQube for Code Quality. - Proven working experience in C# with WPF. - Proficient in drafting technical...

Job Title: Wealth Management Operational Security Engineer Cloud, Vulnerability, and Application Security Location: Chennai Experience: 5 to 8 Years Work Mode: Hybrid ***Note : Joiners: Immediate to 30 days preferred About the Role We are seeking a highly skilled Operational Security Engineer to support the APAC Wealth Management Security Office (CISO Delegation). This role focuses on safeguarding enterprise systems, applications, and cloud infrastructure through technical access control, vulnerability management, and compliance enforcement ensuring data confidentiality, integrity, and availability. Key Responsibilities 1. Threat & Vulnerability Management Lead vulnerability assessments usin...

Job Title: Fullstack Developer Location: Delhi/NCR, 2 days Hybrid Timings: 3pm to 12am IST Job Type: FT with Highspring/Vaco India Office: Highspring Shared Services Gurugram Onsite Senior Full-Stack Developer Angular / Java / Spring Boot Mandate Overview We are looking for a Senior Full-Stack Developer to join our Agile delivery team. You will contribute to the design, development, testing, and deployment of enterprise web applications built on Angular, Java, and Spring Boot all within a modern microservices and DevOps environment. You will be part of a multidisciplinary team that collaborates across Canada to deliver secure, scalable, and innovative digital solutions. What Youll Do Design,...

1. Level 2 Resource Source Code Review (SCR) Skills: Source Code Review, Multiple Languages, Checkmarx, SonarQube, Certifications (CEH/ OSCP/ SANS25/LPT/ CEPT) 2. Level 1 Resource Source Code Review (SCR) Skills: Source Code Review, Checkmarx, SonarQube, Certifications (CEH/ OSCP/ SANS25/ LPT/CEPT) Key Responsibilities : Perform manual and automated code reviews to identify security vulnerabilities in web, mobile, and backend applications. Collaborate with developers, DevOps, and QA teams to ensure secure coding practices and help fix identified issues. Use SAST tools (e.g., Fortify, Checkmarx, Veracode, SonarQube) to scan code and interpret results. Validate and triage findings to eliminate...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Application Security Architecture and Design Good to have skills : NA Minimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are looking for a Technical Lead with strong expertise in Application and Infrastructure Security to lead a suite of security services including vulnerability management, application secu...

Role & responsibilities Total Experience > 6 Years with 4 Years of relevant Experience Should have working experience . Development: Python(preferred) or Pyspark or Scala & with Spark Framework Cloud: AWS Services (Lambda, S3, Glue, Step Functions, Event Bridge, ECS, EKS) DevOps & IaC tooling : Terraform, CI/CD pipelines, Git Python (preferred) or PowerShell scripting SonarQube and Veracode. Proficiency with automated testing tools (e.g. Pytest, Scalates). Knowledge of RESTful and microservice architectures.

Role & responsibilities Conduct application security assessments, threat modeling, and code reviews for products and services. Perform static (SAST), dynamic (DAST), and software composition (SCA) analysis using modern tools. Collaborate with development teams to embed security controls in CI/CD pipelines. Review and enhance security architecture for web, mobile, and API-based applications. Work with DevOps teams to strengthen cloud security posture (AWS/GCP/Azure). Investigate and respond to product security incidents and vulnerability reports. Support bug bounty triage and coordinate fixes with engineering teams. Document and enforce secure coding practices and security guidelines. Partici...

As a Java Fullstack Developer based in Bangalore with at least 6 years of experience, you will be responsible for the following key tasks: - Hands-on experience in Spring boot, Microservices, JAVA, J2EE, Spring, Hibernate, JPA. - Proficiency in REST API producers & Consumers implementations. - Strong knowledge of Java Persistence API and Log4j. Knowledge of ELK tools like Kibana/Splunk is favorable. - Experience with Kafka or any messaging queue. - Familiarity with Mongo DB or any NOSQL DB. - Hands-on experience with Oracle and DB modeling. - Proficiency in JAVA file operations, FTP, and SMTP/Java mail. - Experience in Microservice Architecture with cloud platforms such as AWS, AZURE, or On-...

Role: Senior Engineer - Full Stack (MEAN / MERN) J ob Location : Coimbatore About Company At TechGenzi, we develop products and innovative solutions catering to the needs of the industries serving the global market. We innovate and collaborate to serve the customer towards improving the productivity and efficiency through our automation solutions. You can take pride to be a part of the organization where diversity, equity and inclusion are shared values. Were committed to fostering an environment that is inclusive, respectful, load of opportunities for personal and professional growth, and continuous improvement culture. TechGenzi is looking for a highly motivated member with hands on experi...

About The Role : Job Title DevOps and Full Stack Engineer, AS LocationBangalore, India Role Description The Infra & DevOps team within DWS India , sits horizontally over the project delivery, committed to provide best in class shared services across build, release and QA Automation space. Its main functional areas encompass Environment build, I ntegration of QA Automation suite, Release and Deployment Automation Management, Technology Management and Compliance Management. This role will be key to our programme delivery and include working closely with stakeholders including client Product Owners, Digital Design Organisation, Business Analysts, Developers and QA to advise and contribute from ...

Job Summary We are seeking a highly motivated Application Security Engineer to join our security team. The ideal candidate will have hands-on experience in conducting security assessments for web, mobile, and thick client applications, as well as reviewing source code for vulnerabilities. This role involves close collaboration with development teams to ensure applications are secure by design and compliant with best practices. Key Responsibilities Conduct security assessments of web, mobile, thick client applications, and APIs. Perform source code reviews and software composition analysis (SCA) to identify vulnerabilities. Collaborate with development and DevOps teams to remediate identified...

As a Full Stack Engineer at YASH Technologies, you will be utilizing your expertise in TypeScript, Angular, and Node.js to drive business transformation and create positive changes in an increasingly virtual world. Your role as an independent individual contributor will involve maintaining existing project modules, creating new modules as required, and delivering software solutions on time with minimal supervision. **Key Responsibilities:** - Utilize at least 12+ years of experience in web services development to work with Angular 15+, CSS, HTML5, and build Micro Services and RESTful web Services using frameworks like Nest, Express, or Nx - Implement CI/CD architecture and set up DevOps pipe...

Responsibilities: * Design, develop, test & maintain scalable web applications using .NET Core, C# & Azure DevOps. * Collaborate with cross-functional teams on microservice architecture & Veracode security.

You will be working as part of an existing agile team to develop quality solutions within required deadline. Collaborating effectively to support and enhance the full product lifecycle. Reviewing proposals, evaluating alternatives, providing estimates and making recommendations. Shape and lead the infrastructure and security strategy and the technical roadmaps across the teams. Lead the design and implementation of scalable, secure, and compliant cloud solutions, collaborating across engineering, security, and business teams. Champion DevSecOps practices, CI/CD pipelines, and cloud-native tooling to enhance posture and reduce friction. Ensure operational coverage, whilst driving automation a...

You will be #LI-hybrid based in Hyderabad and reporting to Director Engineering. You will be working as part of an existing agile team to develop quality solutions within required deadline. Collaborating effectively to support and enhance the full product lifecycle. Familiar DevSecOps practices, CI/CD pipelines, and cloud-native tooling to enhance posture and reduce friction. Familiarity with modern engineering practices such as Infrastructure as Code and Policy as Code and engineering delivery and maintaining platform security posture. Experience and Skills Knowledge of different software development lifecycle Familiarity with DevOps & IaC tooling such as CDK or Terraform Familirity with CI...