Description :

Title : Application Security Leader.

Location : Bengaluru, KA.

Note : Candidate's who aren't presently based in Bengaluru, KA PLEASE DON'T APPLY.

INTERVIEWS WILL HAPPEN F2F / IN-PERSON :

We are seeking a senior technical leader to lead our Application Security and Developer Enablement efforts.

The ideal candidate will have a strong background in Application Security and mindset of Developer Enablement.

The Vice President will be responsible for building and maintaining a robust security posture, partnering with cross-functional teams, and driving application security excellence across the firm.

The role requires technical leadership and guidance to application security team of 4 engineers.

As technical expert, hands on experience to design application security systems, perform technical analysis and offering solutions to keep developer engagement is key for success in this role.

Contributing to improvising standards and procedures and coordinating with stakeholders for implementing and maintaining integrated secure applications across the firm.

We are looking for experienced application security leader who played role as an engineer in the past so that application is protected from various application security risks.

The person should have experience working in large organizations where cross-department and cross-divisional collaborations with other executives on strategies and partnerships is key to success.

The person must be able to document Architecture Engineering decisions and offer oversight for all functions in Application Security space.

Qualifications :

- 7 to 12 years of experience in the software development domain.

- Experience working on Application Security and Developer Security is a plus.

- Strong and hands-on in anyone programming languages Java or Python or Equivalent one.

- Strong understanding and hands on Database Operations.

- Strong understanding and hands on of SDLC standards, Vulnerabilities, Cyber incidents, Penetration testing tools, security frameworks and compliance regulations.

- Strong understanding and experience in working on public cloud aws/azure/gcp is a plus.

- Prior experience frontend to backend (full stack) on application security key areas from design, integration of SAST, SCA, DAST, Container scanning tools with CI/CD to reporting key metrics to stakeholders.

- Strong understanding of security industry standards and regulatory requirements.

- Experience with design thinking, security reviews, and validating designs for security.

- Proven leadership and stakeholder management skills.

- Ability to build and track key metrics to measure security posture.

- Good understanding of Cyber technologies and their integrations in large environments.

- Strong analytical and problem-solving skills.

- Confidence is presenting and critiquing design and architecture across.

- Ability to communicate well with other senior executives on risks, strategy, and solutions.

- Strong communication and partnership skills, with ability to work with cross-functional teams.

- Ability to build and manage a team of developers and engineers.

Skills Desired :

- Knowledge on cyber domains : Vulnerability Management, Code Scanning, Developer Security.

- Good understanding of the protocols underpinning the web TCP/IP, HTTP, SSL/TLS etc.

- Knowledge on public and private cloud, Kubernetes.

- Self-driven and self-motivated candidates desired.

- Ability to learn and adopt new technologies.

- Excellent Knowledge in Programming skill (Python, Java, .Net, JavaScript, Shell Scripting).

- Security Programming Skills (Secure coding practices, Input validation, sanitization, Cryptography basics, OAuth2, SSO, JWT, API security, Vulnerability analysis & fix scripting).