Back to jobs
We are looking for a hands-on Application Security Analyst with 2–3 years of experience who combines strong programming expertise with cybersecurity knowledge. The ideal candidate should be comfortable writing and reviewing code, and actively contributing to secure development practices across platforms such as .NET and/or Salesforce.
This role requires a developer mindset with a security focus—someone who can both identify vulnerabilities and fix them through code.
Required Skills & Qualifications
Experience
Preferred / Good to Have
Soft Skills
Job Description
Software Engineer, Associate
Department: Information Technology
Employment Type: Full Time
Location: Hyderabad
Description
We are looking for a hands-on Application Security Analyst with 2–3 years of experience who combines strong programming expertise with cybersecurity knowledge. The ideal candidate should be comfortable writing and reviewing code, and actively contributing to secure development practices across platforms such as .NET and/or Salesforce.
This role requires a developer mindset with a security focus—someone who can both identify vulnerabilities and fix them through code.
A Typical Day in the Life Includes:
- Perform application security testing (SAST, DAST, SCA) and manual code reviews
- Identify, analyze, and remediate security vulnerabilities in applications
- Write and modify code to fix security issues and improve application security posture
- Collaborate closely with development teams to enforce secure coding practices
- Participate in secure design reviews and threat modeling exercises
- Integrate security into DevSecOps pipelines (CI/CD)
- Develop or enhance security tools, scripts, and automation
- Support incident analysis and remediation related to application security
- Stay updated on emerging threats, vulnerabilities, and modern attack techniques
Basic Qualifications:
Required Skills & Qualifications
Experience
- 2–3 years of experience in Application Security / Software Development / Cybersecurity
Strong Programming Skills (Mandatory)
- Hands-on development experience in:
- .NET (C#, ASP.NET) OR
- Salesforce (Apex, Lightning components, integrations)
- Willingness to actively code, debug, and remediate vulnerabilities
- Strong understanding of:
- Secure coding standards
- Code review practices
Security Knowledge
- Solid understanding of:
- OWASP Top 10 vulnerabilities
- Common attack patterns (XSS, SQL Injection, CSRF, etc.)
- Experience with:
- SAST tools (e.g., Checkmarx, Fortify)
- DAST tools (e.g., Burp Suite, OWASP ZAP)
- Knowledge of:
- API security, authentication (OAuth, JWT, SSO)
Additional Technical Skills
- Experience with:
- Web application architecture
- REST APIs and microservices
- Familiarity with:
- DevSecOps practices and CI/CD pipelines
Preferred Qualifications:
Preferred / Good to Have
- Exposure to Salesforce security best practices (if Salesforce background)
- Experience in .NET secure application development
- Knowledge of cloud platforms (Azure/AWS)
- Exposure to container security (Docker/Kubernetes)
- Working knowledge of AI/ML in cybersecurity:
- Security automation
- Threat detection / anomaly detection
- Certifications (optional but valued):
- CEH, Security+, CSSLP, GWAPT, or equivalent
Soft Skills
- Strong problem-solving and analytical mindset
- Ability to bridge development and security teams effectively