9 App Security Jobs

Department: Information Technology Location: APAC-India-IT Delivery Center Hyderabad Description Role SummaryThis position is ideal for senior-level professionals to join the mobile development team as a Sr Android Developer, responsible for the design, development, and optimisation of high-quality Android applications As a Sr Android developer, the candidate will be a contributor to the execution of the strategic direction for the company Who will also play a crucial role in driving best practices, and collaborate cross-functionally with product and design teams The ideal candidate is expected to have proven extensive experience in developing scalable and secure Role expectations Role expectations? Design scalable and modular application architectures, Design, build, and maintain advanced Android applications using Kotlin and Java, Responsible for contributing to and being a champion of consumer-facing Android apps, Translate product requirements into well-architected, high-performance mobile applications, Work closely with product managers, UI/UX designers, QA engineers, and backend teams to propose efficient user experience solutions, Develop, test and maintain Android applications using Kotlin Ensure performance, quality and responsiveness of the apps, Perform and lead code reviews to ensure best practices and maintain code quality, Mentor other developers, ensuring the quality of their code and design, Demonstrate teamwork skills with a solid foundation on Android/hybrid frameworks, Highly motivated, creative, self-learner, excellent communication and presentation skills, Collaborate closely with product managers, UI/UX designers, and backend engineers, Ensure code quality by writing unit tests, UI tests, performing code reviews, and following clean architecture principles and work with CI/CD pipelines, Monitor app performance and address bugs, crashes, or performance bottlenecks, Stay up-to-date with new Android features, frameworks, and tools, Drive continuous improvement in development processes and tools, What We're Looking For What we're looking for? 8+ years of experience in building native mobile apps in the Android platform using latest SDK versions, Strong proficiency in Kotlin and Java, Deep understanding of Android SDK, Jetpack libraries (Navigation, Room, ViewModel, LiveData, etc ), 3+ years of experience in Kotlin is a must, Hands-on experience with Coroutines, Flows, and Dependency Injection frameworks like Hilt/Dagger, Familiarity with Jetpack Compose is a strong plus, Experience integrating RESTful APIs and third-party libraries, Solid understanding of mobile app security and performance optimization, Experience with CI/CD tools and unit/UI testing frameworks (JUnit, Espresso, MockK, etc ), Excellent communication, collaboration, and problem-solving skills, Good understanding of mobile development frameworks and platforms, device manufacturers and mobile browsers, Experience with MVVM/MVI/MVP architectures and Clean Architecture principles, Good understanding of mobile apps CI/CD process, Experience with Graph QL, REST API concepts, design patterns and SOLID principles, Experience in writing automation tests and Unit tests, Experience in using Git source control, Experience working in distributed teams, Complementary skills Experience with Swift UI is a plus, Applicant Privacy Policy Review our Applicant Privacy Policyfor additional information, Equal Opportunity Statement Align Technology is an equal opportunity employer We are committed to providing equal employment opportunities in all our practices, without regard to race, color, religion, sex, national origin, ancestry, marital status, protected veteran status, age, disability, sexual orientation, gender identity or expression, or any other legally protected category Applicants must be legally authorized to work in the country for which they are applying, and employment eligibility will be verified as a condition of hire,

Role & responsibilities Experience in understanding and reviewing solution architecture, identify the security loopholes, recommend the best solution specific to environment and technologies in use. Understanding of data criticality, classify them and suggest controls accordingly. Understanding of Containers and Kubernetes and security best practices. Expert level security knowledge in technical IT domains such as operating systems, networks, databases, cloud or solution development etc. Experience in practical security vulnerability identification and remediation. Management of multiple stakeholders including business, IT and management. Information Security domains - two or more of the following: Risk Assessment, Vulnerability Management, Incident Management, Security Architecture, Application/Network Security. This experience should include both advisory and implementation experience. Excellent work experience on micro service architecture, micro segmentation, zero trust architecture etc. Industry related certification preferred (e.g. CISSP, CISA, CISM, CISSP-ISSAP, GSEC / GCIH / GCIA: GIAC Security Certifications, ISO 27001:2013, PCIDSS 3.0, OSCP/OSCE). Solution Level & Technical Certifications will be advantageous. Preferred candidate profile

Job Summary We are seeking a seasoned professional to manage and enhance the operations of the Saviynt platform. The ideal candidate will bring strong technical expertise leadership capabilities and a proactive approach to platform stability process improvement and stakeholder engagement. Responsibilities Key Responsibilities Platform Monitoring & Maintenance Oversee the health and performance of the Saviynt Platform including Saviynt Connect Portal and Connectors. Monitor JML (Joiner-Mover-Leaver) processes aggregation tasks and access requests. Hands on with SOD workflows tasks rules forms custom object access reviews and updates of JML configurations access requests and certification workflows. Guide the team to implement best practices for Access Management & RBAC. Play a key role in identifying areas for implementing Automations. Enhancements & Troubleshooting Implement minor enhancements and workflow changes as needed. Coordinate with the Saviynt product team for resolution of critical issues. Documentation & Compliance Maintain up-to-date SOPs runbooks and procedural documentation. Ensure timely patching of the Saviynt platform and its components. Support DR (Disaster Recovery) testing. Integration & Performance Management Manage and resolve integration issues with systems such as Active Directory and ServiceNow and any custom integrations. Periodically tune performance parameters to ensure optimal system efficiency. Operational Oversight Share service health status report to customer on daily basis validate logs and verify backups. Provide Weekly/monthly reports on incidents changes service requests and problem tickets. Attend Weekly/monthly review calls tracking actions and work towards closure. Process & Stakeholder Engagement Identify process gaps and propose remediation aligned with product and security standards. Present changes in CAB meetings participate in major incident bridges and engage with customers for requirement gathering and escalation handling. Additional Skills Strong understanding of ITIL processes. Working knowledge of NetIQ IDM is a plus. Proficiency in Microsoft Office Suite for documentation and presentations. Excellent communication skills to liaise effectively between internal teams and customers. Basic knowledge on scripting using PowerShell AD & Exchange commands. Knowledge on Active Directory Entra AD Entra AD connect for synchronization

Job Summary IAM Architect Develop the overarching vision principles and architecture for the workload identity and access management system across all environments like Azure GCP hybrid on premises Responsibilities Define the types of workload identities e.g. Managed Identities Service Accounts SPIFFE identities their attributes and their lifecycle management processes. Design the framework and specific policies for controlling workload access to resources based on the principle of least privilege. Define and design secure methods for workloads to authenticate and communicate with each other. Design the integration points and processes for connecting the workload IAM system with Fords current IAM infrastructure e.g. Entra ID Drive the creation of the long-term workload IAM governance framework ensuring alignment with industry best practices and Fords policies. Serve as the subject matter expert on workload identity concepts technologies e.g. Entra Workload Identity SPIFFE-SPIRE and best practices. Assess and recommend appropriate workload identity features and tools available in Azure GCP and other relevant platforms. Design the system to meet relevant security and compliance requirements

Job Summary The App Security Specialist will play a crucial role in ensuring the security and integrity of applications within the Hi-Tech domain. With a focus on Privileged Access Management the candidate will work in a hybrid model during day shifts. This position requires 11 to 14 years of experience emphasizing technical expertise and domain knowledge to safeguard company assets. Responsibilities Implement robust security measures to protect applications from unauthorized access and potential threats Collaborate with cross-functional teams to identify security vulnerabilities and develop effective mitigation strategies Conduct regular security assessments and audits to ensure compliance with industry standards and best practices Develop and maintain security policies and procedures tailored to the Hi-Tech domain Monitor and analyze security incidents providing timely responses and solutions to mitigate risks Utilize Privileged Access Management tools to control and monitor access to sensitive information Provide guidance and training to team members on security protocols and practices Stay updated with the latest security trends and technologies to enhance the companys security posture Ensure seamless integration of security solutions within the existing IT infrastructure Work closely with stakeholders to align security initiatives with business objectives Prepare detailed reports on security performance and present findings to management Support the development of secure application architectures and frameworks Contribute to the continuous improvement of security processes and systems. Qualifications Possess a strong understanding of Privileged Access Management and its application in securing sensitive data Demonstrate expertise in the Hi-Tech domain with a focus on application security Have a proven track record of implementing security solutions in a hybrid work environment Exhibit excellent problem-solving skills and the ability to work collaboratively with diverse teams Show proficiency in conducting security audits and assessments Be adept at developing and enforcing security policies and procedures Display strong communication skills to effectively convey security concepts and strategies Maintain a proactive approach to identifying and addressing security challenges Hold relevant certifications in application security and Privileged Access Management Be committed to continuous learning and staying abreast of industry developments Demonstrate the ability to balance security needs with business objectives Have experience in training and mentoring team members on security best practices Show a dedication to enhancing the companys security posture through innovative solutions. Certifications Required Certified Information Systems Security Professional (CISSP) Certified in Risk and Information Systems Control (CRISC)

We are keenly looking for a resource with 10+ years of experience who had both technical and managerial experience to execute a lead position from offshore. Primary Skill: Azure DevOps, Jfrog Artifactory, SonarQ, DevSecOps(SAST & DAST), Azure native App Security Secondary Skill: Containerization and Orchestration tools. Shift details: Day shift overlapping with EST (2PM-10:30PM) Technical Leadership & team management at Offshore: • Technical Leadership: Provide guidance to ensure best practices and quality standard are maintained in deliverables. Understand Selective standards and help ensure deliverables meets and adhere to the standards. If standards are missing collaborate with the core team to build standards as needed/required • Team Guidance: Lead and support DevOps engineers to achieve project goals. • Team Management: Lead and coordinate offshore DevOps teams. • Sprint Planning: Assist with offshore sprint planning, estimates, and timelines for the work aligned. • Work Execution: Run stand-ups and manage work execution. • Resource Optimization: Optimize team member capacity utilization. • Risk Management: Identify and mitigate risks aligned to the work • Documentation: Maintain detailed documentation of processes and projects Mature Offshore-Driven Operations and Operational capabilities : • SOP Development: Create standard operating procedures for operational tasks. • Communication: Establish clear channels with DevOps service consumers and stakeholders. • Continuous Improvement: Encourage innovation and automation. • SRE for key DevOps tooling: Build Site Reliability Engineering around DevOps platforms and tools. Build health checks for the key platforms. • Keeping platforms/tooling evergreen. Report/track on tech currency • Improve & automate operational onboarding - drive platform Self service capabilities for our end customer Collaboration and Coordination: • Stakeholder Updates: Provide regular updates to stakeholders. • Team Collaboration: Work with development, QA, and operations teams. • Performance Tracking: Develop and monitor key performance indicators (KPIs).

Responsibilities: * Collaborate with cross-functional teams on backend development & API integration * Develop apps using Flutter, frontend UI & data structures Assistive technologies Flexi working Work from home Over time allowance Employee state insurance Annual bonus Performance bonus Retention bonus Mobile bill reimbursements Provident fund

Job Title: Application Security (AppSec) Experience: 10+ Years Location: Hyderabad Department: Information Security / DevSecOps Industry: Software / IT Services / Product Engineering Job Summary: We are seeking a seasoned Application Security Focal with 10+ years of experience to lead our application security initiatives across the SDLC. The AppSec Focal will act as the central point of contact between development, DevOps, and security teams to ensure secure design, development, and deployment of applications. This role demands deep technical expertise in secure coding practices, threat modelling, SAST/DAST tools, and secure CI/CD integration. Key Responsibilities: Security Leadership & Governance: Act as the single point of contact for all application security initiatives within the organization. Define, implement, and enforce secure coding standards and security architecture reviews. Establish and maintain secure SDLC practices in collaboration with engineering teams. Drive risk assessments and provide actionable security recommendations for applications. Collaborate with compliance teams to support audits (ISO 27001, SOC 2, HIPAA, etc.). Technical Responsibilities: Lead threat modelling, secure code reviews, and vulnerability assessments. Manage and optimize the use of AppSec tools: SAST (e.g., SonarQube, Checkmarx), DAST (e.g., OWASP ZAP, Burp Suite), SCA (e.g., Mend, Black Duck), and container scanning tools. Integrate security tools into CI/CD pipelines (e.g., Azure DevOps, GitLab CI/CD, Jenkins). Drive vulnerability triage and remediation with engineering teams. Analyze third-party components and APIs for security risks (open-source security management). Training & Awareness: Conduct secure coding workshops, OWASP Top 10 training, and awareness sessions. Build and maintain a knowledge base of secure development practices, checklists, and guidelines. Support incident response efforts in case of application-related security incidents. Required Skills & Experience: 10+ years of experience in application development and/or security engineering. Deep understanding of OWASP Top 10, CWE, CVE, and common attack vectors (XSS, SQLi, CSRF, etc.). Strong knowledge of application architectures (web, mobile, APIs, microservices). Hands-on experience with security tools (SAST, DAST, SCA, RASP, WAF, etc.). Proficiency in at least one programming language (Java, .NET, Python, Node.js, etc.). Familiarity with DevSecOps pipelines and security automation. Preferred Qualifications: Bachelor's/masters degree in computer science, Cybersecurity, or related field. Relevant certifications: CSSLP , OSWE , GWAPT , CISSP , or CEH Azure/AWS security certifications are a plus. Experience in Agile/DevOps environments and secure CI/CD implementation. Soft Skills: Excellent stakeholder communication, documentation, and leadership abilities. Ability to influence engineering teams and build a security-first mindset. Strong problem-solving and risk assessment skills. Reporting To: Head of Security / CISO / Enterprise Architect Work Mode: Hybrid / On-site / Remote

Location: Pune / Ranchi / Bangalore / NCR Hybrid Experience Level: 5-8 Years Employment Type: Full-time Job Title: Sr. Salesforce Developer About Teqfocus Teqfocus is looking for a driven and experienced Senior Salesforce Developer with deep knowledge of managed package development and AppExchange deployment. The ideal candidate should possess strong hands-on development expertise, particularly across Salesforce Health Cloud, OmniStudio, and integration frameworks. Key Responsibilities Managed Package Development & Deployment Lead the development and deployment of managed packages on AppExchange. Manage AppExchange security reviews, namespace, and versioning. Deliver end-to-end AppExchange deployments, including test coverage and documentation. Salesforce Development Build scalable solutions using Apex, LWC, Visualforce, and Triggers. Work with OmniStudio tools like DataRaptors, Integration Procedures, and FlexCards. Translate business needs into scalable Salesforce solutions (experience with Health Cloud preferred). Integrations Develop integrations with REST/SOAP APIs and middleware tools. Monitor and troubleshoot data flow for secure and scalable integrations. Best Practices and Code Management Follow Salesforce best practices, ensure reusable code, and maintain high standards. Use version control tools like Git and CI/CD pipelines for automated deployment. Required Qualifications 5-8 years of hands-on Salesforce development experience. 3-4 years in integration development and architecture. Minimum two full-cycle AppExchange deployments. Proficiency with OmniStudio tools. Salesforce PD1 and Admin certifications. Health Cloud experience is a plus. Good to Have Experience with Agentforce framework or similar solutions. Salesforce PD2 or certifications in Sales Cloud, Service Cloud, or Health Cloud. Soft Skills Strong analytical and problem-solving capabilities. Effective cross-functional communication and stakeholder collaboration. A proactive attitude and continuous learning mindset.