Senior Specialist – Cyber Security Application Security
S M Software Solutions Inc
Date: 6 hours ago
City: Pune, Maharashtra
Contract type: Full time
Location: Bengaluru
Experience: 6–8 Years
Type: Permanent
Job Description
We are looking for a Senior Cyber Security Specialist with expertise in application security testing and a strong understanding of modern secure development practices. This role will be responsible for performing security assessments across agile projects and working closely with development teams to identify and remediate vulnerabilities across the SDLC.
Key Responsibilities
Experience: 6–8 Years
Type: Permanent
Job Description
We are looking for a Senior Cyber Security Specialist with expertise in application security testing and a strong understanding of modern secure development practices. This role will be responsible for performing security assessments across agile projects and working closely with development teams to identify and remediate vulnerabilities across the SDLC.
Key Responsibilities
- Conduct and manage security assessments for multiple agile-based projects.
- Perform application penetration testing for:
- Web, API (REST/SOAP), Microservices
- Thick clients, mobile applications
- Utilize SAST, IAST, CVM, and DAST tools like Checkmarx, Contrast, Black Duck to identify vulnerabilities.
- Eliminate false positives and analyze tool outputs to provide actionable remediation guidance.
- Collaborate with application teams to ensure timely resolution of identified security issues.
- Perform threat modeling using application artifacts such as design documents, user stories, and architecture diagrams.
- Create targeted security user stories and misuse cases for agile security testing.
- Conduct source code reviews (preferably Java or .NET).
- Read and understand application code to offer specific fixes for vulnerabilities.
- Provide clear technical writing and presentations to both technical and non-technical stakeholders.
- 5+ years of experience in:
- Application security and penetration testing (Web/Desktop/API/Mobile)
- Secure code review (Java or .NET)
- Threat modeling and misuse case design
- Deep understanding of DevOps and CI/CD integration with security tools.
- Strong knowledge of Java, JavaScript, Spring Boot and encryption/key management.
- Familiar with ethical hacking methodologies and frameworks:
- OWASP, OSSTMM, NIST, SANS, CWE, etc.
- Excellent verbal and written communication skills.
How to apply
To apply for this job you need to authorize on our website. If you don't have an account yet, please register.
Post a resumeSimilar jobs
D&T Manager of DevOps
Aramex,
Pune, Maharashtra
3 hours ago
Job description: Purpose of the Job The candidate for Manager – DevOps / Release Management is liable for automating all the manual tasks for developing and deploying code and data to implement continuous deployment and continuous integration frameworks. They are also held responsible for maintaining high availability of production and non-production work environment. This is a hands-on leadership role, requiring...
Software Engineer - .NET
Cornerstone OnDemand,
Pune, Maharashtra
9 hours ago
We're looking for aSoftware Engineer - .NETThis role is Office BasedAs a Software Engineer, you will be designing and delivering solutions that scale to meet the needs of some of the largest and most innovative organizations in the world. You will work with team members to understand and exceed the expectations of users, constantly pushing the technical envelope, and helping...
QA Automation Enginee
Infosys,
Pune, Maharashtra
3 days ago
Primary skills:Technology->Automated Testing->Test automation framework designA day in the life of an Infoscion As part of the Infosys delivery team, your primary role would be to interface with the client for quality assurance, issue resolution and ensuring high customer satisfaction. You will understand requirements, create and review designs, validate the architecture and ensure high levels of service offerings to clients...
