Application Security – Specialist
Location: Bengaluru, Gurgaon, Pune
Job code: 100843
Posted on: Feb 14, 2024
Developing and maintaining software application security policies and procedures.
Set security controls and design requirements during the software creation and development stage of the software lifecycle.
Developing and maintaining documentation of application security controls
Implementing software application security controls.
Designing technical solutions to address security weaknesses
Analysing system services, spotting issues in code, networks and applications
Following security best practices in performing tasks
An application security engineer ensures that every step of the software development lifecycle (SDLC) follows security best practices.
Follow Secure coding principles and ensure testing of the application against security risks/parameters before release and during the production stage.
Perform threat modelling for all new projects.
Involves proactive steps to discover and patch vulnerabilities before hackers can exploit them.
Perform Static AppSec testing (SAST); The AppSec engineer analyses your application’s source code for vulnerabilities before compiling and running them.
Perform Dynamic AppSec testing (DAST).
Perform interactive testing, combining the best parts of static and dynamic testing; interactive testing analyses code when its functionality is engaged.
Good understanding of Mobile security testing.
Implement and manage vulnerability solutions, scan all IT systems to identify vulnerabilities, and work with their owners to fix them.