Description :

Application Security Lead Mumbai (On-site)

Location : Mumbai

Department : Information Security

Experience Required : 8+ years

Employment Type : Full-time

About the Role :

We are seeking an experienced Application Security Lead to establish and lead a robust application security program within our organization.

The ideal candidate will have deep technical expertise in application security and hands-on experience integrating security practices into the software development lifecycle.

Key Responsibilities :

- Lead and implement the organizations application security strategy.

- Conduct secure code reviews, threat modeling, and vulnerability assessments for web and mobile applications.

- Integrate and automate security testing tools (SAST, DAST, SCA, IAST) into CI/CD pipelines.

- Define, document, and enforce secure coding standards and best practices.

- Collaborate with development and DevOps teams to identify and remediate vulnerabilities early in the lifecycle.

- Track, analyze, and report key application security metrics and risk posture to leadership.

- Stay updated on emerging threats, vulnerabilities, and mitigation strategies.

Required Qualifications :

- Bachelors degree in Computer Science, Information Security, or a related technical field.

- Minimum 8 years of experience in application security with strong knowledge of secure SDLC.

- Proficiency with leading security testing tools and methodologies.

- Deep understanding of OWASP Top 10 and common web application vulnerabilities.

- Strong problem-solving, communication, and collaboration skills.

- Relevant certifications such as OSWE, CSSLP, GWAPT, or equivalent are preferred.

Why Join Us :

- Opportunity to build and shape the organizations security framework from the ground up.

- Work in a dynamic, security-first environment with exposure to modern technologies.

- Competitive compensation and growth opportunities in a critical business domain.