Overview
Application Security Engineer Jobs in Davangere, Karnataka, India at KMM Technologies, Inc.
Title: Application Security Engineer
Company: KMM Technologies, Inc.
Location: Davangere, Karnataka, India
Type: Full Time
Category: IT/Tech, Security
Location: Davangere
Senior Application Security Engineer
Work Hours:
M-F 9am-1pm US EST(7:30PM to 12AM IST) Remaining hours can be worked during India daytime, but 40 hours/week had to be put in. The Senior Application Security Engineer will be responsible for identifying potential threats to the application and product infrastructure, recommending enhancements accordingly, and implementing those technologies. The senior application security engineer provides support to ensure applicable information protection policies, procedures, guidelines, and best practices are followed.
Performs Security Risk Assessments (SRAs) and compliance reviews to ensure applications and services are operating in accordance with established policies and procedures. Educates stakeholders in the assessment process and leads both pre- and post-assessment meetings. RESPONSIBILITIES Serve as a security expert in enterprise applications efforts, integrations, and container services and databases helping project teams comply with enterprise and IT security policies, industry regulations, and best practices.
Manage application vulnerability assessments on various types of products, services and platforms on a consistent cadence. Evaluate and implement proper information security policies and configurations within respective application platforms to support information security posture hardening and compliance attestation. Ability to lead application risk and vulnerability assessments and remediation activities. Conduct API security vulnerability assessments and remediation response planning. Ability to evaluate container services for security assessment and best practice implementation to reduce risks and strengthen information security posture.
Evaluate application and service
resilience
and disaster recovery planning to ensure operability. Analyze output from application vulnerability assessments, recommend mitigation strategies and resolve any security incidents through work with pertinent business departments. Review and provide input into networks and endpoints designs to ensure compliance with security and enterprise architecture. Review in-house and 3rd-party applications/code for security vulnerabilities and best practices.
Build/enhance security architecture and configure networks and endpoints to enhance the security posture of the enterprise. Research, design, and advocate new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. Participate in Software Development Lifecycle: code review, QA security testing, pipeline management, launches, etc. Develop and/or implement automated security testing tools where possible.
Participate in the development of security-related tools and applications, such as multi-platform cookie-based authentication and internal security libraries/frameworks. Train engineers on common security problems and best practices for writing secure code. Perform
hands-on
testing of applications, as well as building and enforcing information risk management requirements and structure, including providing practical secure architecture skills and developing and implementing Information Security best practices.
Lead and execute projects on our security roadmap. Adhere to existing risk management frameworks, such as COBIT, ITIL, and ISO 27002. Participate in managing in…
