6 Secure Coding Jobs

Good experience in security software development with a focus on firmware and hardware security. Hands-on experience with TPM firmware and protocols (TPM 2.0). Proficiency in C, for low-level security software development. Strong understanding of cryptographic algorithms, secure key management, and hardware-backed security. Familiarity with UEFI/BIOS security, secure enclave technologies, and embedded security solutions. Knowledge of security vulnerabilities, mitigations, and industry best practices. Experience working with open-source TPM stacks is a plus.

Sr. Consultant PQE Source Code Review Ref: JN-052025-786587 Experience Range: 58 years Vertical: Service Operation and Cloud Engineering Job Summary We are looking for a skilled Senior Consultant with deep experience in application security, source code review, and penetration testing. The role focuses on securing applications across web, mobile, API, and cloud ecosystems, and driving secure development practices through collaboration, tooling, and remediation guidance. Key Responsibilities Perform manual and automated security assessments on web, mobile, API, and cloud-based applications. Conduct penetration testing (black box, gray box, white box) across diverse systems and environments. Identify, exploit, and document vulnerabilities including OWASP Top 10, SANS 25, business logic flaws, and misconfigurations. Conduct secure code reviews in languages like Java, .NET, Python, and JavaScript to detect and mitigate risks. Leverage security tools such as Burp Suite, OWASP ZAP, Nmap, Metasploit, Nikto, Postman, Nessus, and others. Collaborate with development teams to offer remediation guidance and verify security fixes. Support DevSecOps initiatives by integrating security into CI/CD pipelines. Stay updated on emerging vulnerabilities, CVEs, and exploit techniques. Prepare detailed reports, developer-friendly documentation, and executive summaries for key stakeholders. Participate in security incident response and forensic investigations, as needed. Key Competencies Proven ability to execute deep-dive source code analysis and identify complex security vulnerabilities. Expertise in secure development lifecycle (SDLC) and secure design principles. Excellent communication skills to effectively liaise with developers, architects, and management. Ability to handle high-risk findings, prioritize remediation, and drive continuous improvement. Strong analytical mindset with attention to detail and investigative problem-solving capability.

Description We are looking for a skilled Cryptography Engineer to join our team in India. The ideal candidate will have extensive experience in designing and implementing secure cryptographic systems, ensuring data protection and integrity across various applications. Responsibilities Design, implement, and maintain cryptographic systems and protocols. Analyze and improve existing cryptographic systems for security and performance. Collaborate with cross-functional teams to integrate cryptographic solutions into applications. Conduct security assessments and vulnerability analysis of cryptographic implementations. Stay updated with the latest advancements in cryptography and cybersecurity trends. Skills and Qualifications Bachelor's or Master's degree in Computer Science, Information Security, or a related field. 5-10 years of experience in cryptography or information security. Strong understanding of cryptographic algorithms and protocols such as AES, RSA, ECC, and SHA. Experience with security frameworks and standards (e.g., NIST, ISO 27001). Proficiency in programming languages such as C, C++, Python, or Java. Familiarity with cryptographic libraries and tools (e.g., OpenSSL, Bouncy Castle). Knowledge of network security and secure coding practices.

Description We are seeking a Senior/Staff Automotive Cybersecurity Engineer to join our team in India. This role is crucial in ensuring the security of our automotive systems against evolving cybersecurity threats. The ideal candidate will have a strong background in automotive cybersecurity, with hands-on experience in implementing security measures and conducting vulnerability assessments. Responsibilities Design and implement cybersecurity solutions for automotive systems. Conduct risk assessments and vulnerability analyses on automotive software and hardware components. Develop and maintain cybersecurity policies and procedures to safeguard automotive systems. Collaborate with cross-functional teams to integrate security measures into the product development lifecycle. Stay updated on the latest cybersecurity threats and trends affecting the automotive industry and implement appropriate countermeasures. Provide training and guidance to junior engineers on cybersecurity best practices and standards. Skills and Qualifications Bachelor's or Master's degree in Computer Science, Cybersecurity, Electrical Engineering or related field. 3-8 years of experience in automotive cybersecurity or related field. Strong understanding of automotive communication protocols (e.g., CAN, LIN, Ethernet). Experience with security frameworks and standards such as ISO/SAE 21434, UNECE WP.29, and others. Proficiency in programming languages such as C, C++, or Python for developing security tools and scripts. Hands-on experience with cybersecurity tools for penetration testing, threat modeling, and security assessments. Familiarity with secure software development practices and methodologies. Excellent analytical and problem-solving skills, with a keen eye for detail. Strong communication skills to convey complex cybersecurity concepts to non-technical stakeholders.

EagleView, the leader in aerial imagery, is hiring a Senior Application Security Engineer to help validate that our services, applications, and websites are designed and implemented to the highest security standards. Overview You will be responsible for analyzing the security of applications and services, discovering and addressing security issues, building security automation, and quickly reacting to new threat scenarios. A Senior Security Engineer at EagleView is expected to be strong in multiple domains and provide significant contributions to the Product Security team and to multiple groups throughout EagleView. Security engineers are expected to develop elegant solutions to complex business problems and apply appropriate technologies while following security engineering best practices. You are also expected to mentor more junior engineers and be a security thought leader for the organization. A Security Engineer must foster constructive dialogue and seek resolution when confronted with discordant views. Engineers in this role are expected to participate fully in the planning of the Product Security team's work and constantly seek opportunities for process improvement. They should also have a deep understanding of at least one specialty for which they are a sought-out resource (both within Product Security and by groups throughout EagleView), while having an understanding of the application of Information Security in a broad range of technical areas. A successful candidate will need a combination of troubleshooting, technical, and communication skills, as well as the ability to handle a mix of disparate tasks which may include project and software development work. This role will provide career growth opportunities as you gain new security skills in the course of your duties. Responsibilities Application security reviews (threat modeling, ASVS) Vulnerability Assessment and Penetration Testing (VAPT) Management and reporting of vulnerabilities to Engineering Security training and outreach to internal development teams Documentation and process improvement Security metrics delivery Mentor and coach junior security engineers Qualifications BA or MS in Computer Science or related field, or equivalent work experience Minimum of 5 years of experience working in Application Security domain by conducting threat model reviews, design reviews, code reviews, secure coding, identity management and authentication, software development, cryptography, system administration and network security Advanced knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography Preferred Experience: A deep understanding of web application design and services, such as but not limited to RESTful APIs, User facing applications, and foundational design principles Complete understanding of common vulnerability standards such as OWASP Top 10 and CWE 25 Experience with multiple programming languages (such as, Java, C++, Go, C, Python, etc.) Experience implementing security solutions at the business division level Able to work in a diverse team Excellent written and verbal communication skills Demonstrable teamwork skills and resourcefulness Possess self-drive to keep moving things forward even in the face of ambiguity and imperfect knowledge (avoid analysis paralysis) Strong sense of ownership, urgency, and drive

We are seeking an experienced Application Security Engineer to join our team in India. The ideal candidate will be responsible for ensuring the security of our applications by identifying vulnerabilities and implementing best practices throughout the software development lifecycle. Responsibilities Conduct security assessments on applications and APIs to identify vulnerabilities. Develop and implement security policies and procedures for application security. Collaborate with development teams to integrate security practices into the software development lifecycle (SDLC). Perform threat modeling and risk assessments for applications. Review and analyze application architectures for potential security flaws. Provide security training and guidance to development teams. Stay updated with the latest security trends, vulnerabilities, and regulatory requirements. Skills and Qualifications 2-7 years of experience in application security or a related field. Strong understanding of web application security concepts and frameworks such as OWASP. Proficiency in programming languages such as Java, C#, or Python. Experience with security testing tools like Burp Suite, OWASP ZAP, or Fortify. Knowledge of secure coding practices and techniques. Familiarity with cloud security principles and practices. Strong analytical and problem-solving skills. Excellent communication and teamwork abilities.