Principal Application Security Engineer-First Advantage (Mumbai/Bangalore)
Bangalore, Karnataka
⚠️ We'll shut down after Aug 1st - try foo🦍 for all jobs in tech ⚠️
First Advantage
At First Advantage we are committed to providing you with industry-leading background checks and screening services supported by award-winning customer service.We are seeking a highly experienced Principal, Application Security Engineer to lead and evolve our global application security strategy. This role is critical to ensuring our products and platforms are built securely from the ground up and resilient to an evolving threat landscape. You will partner with engineering, product, DevOps, and Security teams to embed security into our SDLC, drive secure coding practices, and influence stakeholders and leaders across the organization.
Responsibilities:
- Develop application security strategies across the global enterprise. Design and implement secure applications and consistently enhance the software development life cycle (SDLC) process.
- Conduct thorough security assessments, including static and dynamic application security testing (SAST/DAST), threat modeling, web/mobile application and API penetration testing, and application architecture design reviews.
- Partner with teams such as security operations, DevOps, development, networking, IT, and product teams to remediate issues and ensure a strong security posture.
- Contribute to the development and automation of security testing tools and processes.
- Manage third party penetration testing services.
- Deliver threat modeling training to development teams to consistently enhance product security and reduce risk.
- Assist with incident response (IR) activities that may relate to application security.
- 7+ years of experience with some combination of application security engineering, threat modeling, penetration testing, web application/API development (.NET/C#, Java, JavaScript), system administration, networking, and information security.
- Proficiency with web application/API testing, static code analysis, and web application vulnerability scanners.
- Relevant industry certifications from organizations such as OffSec, SANS, or isc2.
- Previous technical security engineering role that involved mentorship or training.
- Effective communication skills and experience with presenting to a technical audience and executive leadership.
Joining time needed: not exceeding 30 days
United States Equal Opportunity Employment:
First Advantage is proud to be a global leader in removing barriers and supporting our community members to ensure the changing demographics of the workforce are reflected in our hiring and employment practices. We value all of our candidates, employees, and clients, and place great emphasis on hiring and supporting qualified individuals in each role. We are an equal opportunity employer. We do not discriminate on the basis of race, color, ethnicity, ancestry, religion, sex, national origin, sexual orientation, age, citizenship status, marital status, disability, gender identity, gender expression, veteran status, genetic information, or any other area protected by applicable law.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs Application security Automation C Code analysis DAST DevOps Incident response Java JavaScript Offensive security Pentesting Product security SANS SAST SDLC Security assessment Security strategy Strategy
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.