View All Jobs 151019

Application Security Engineer

Implement automated security scans for Airbus critical applications in DevOps pipelines
Bangalore
Junior
yesterday
Airbus

Airbus

A leading global aerospace corporation, specializing in the design and manufacture of commercial aircraft, military planes, helicopters, and space systems.
97 Similar Jobs at Airbus

Application Security Engineer

Airbus is on its Digital journey and the objective is to transform the company and to prepare it for the future. This transformation includes new global governance, new ways of working, and the implementation of digital business services and platforms. As a part of this transformation journey, we have set up a GIC in the silicon valley of India - Bangalore. This state of the art GIC is responsible for driving excellence in IT and OT for Airbus. Challenges are numerous and exciting!

What is the Airbus Application Security team doing?

Security for Applications is designed to strengthen Airbus applications against evolving threats, reduce vulnerabilities, and de-risk them by applying all the necessary security controls. Your role as an Application Security Engineer is to work towards promoting and ensuring the implementation of secure coding best practices in the context of the Application Security / SecDevOps (Secure Development and Operations of Software Applications) by detecting, analyzing, and remediating vulnerabilities and misconfigurations in application code. Your role is key, as you contribute to the overall performance and success of Airbus Digital Security Posture.

Qualification & Experience:

We seek out curious minds! We value attention to detail! And we care deeply about outcomes!

We're looking for passionate people, who are eager to learn, willing to share, and establishing innovative ways of working and influencing cultural changes.

  • Bachelor or masters in Computer Science, Engineering, or related field would be preferred
  • 1 to 3+ years of relevant experience in Application Security / Secure Coding (SAST)
  • Experience in at least one of the major programming languages: Java, C#, JavaScript, C++ etc.
  • Basic understanding of common application security vulnerabilities: OWASP Top 10, SANS Top 25 and their mitigation controls
  • Familiarities with Cloud, Software development lifecycle and DevOps CI/CD pipelines
  • Good to have relevant industry certifications: CEH, CompTIA Security+ etc.
  • Proven ability to prioritize workload, meet deadlines, and utilize time effectively
  • A team player with excellent interpersonal, communication, and negotiation skills
  • Knowledge of Agile frameworks: SAFe, Scrum, Kanban is an added advantage

Responsibilities

As an Application Security Engineer with our Application Security team, you will work on the following activities:

Governance & Process

  • Contribute towards development, continuous enhancement, and enforcement of secure coding standards, guidelines, and policies
  • Raise awareness on secure coding best practices among developers & application owners across organization

Code Scanning & Review

  • Onboarding of Airbus Critical applications into Airbus DevOps CI/CD to ensure automated code scanning
  • Contribute towards code reviews in context of SAST, SCA, IaC, Artifactory for web & mobile apps
  • Identify security vulnerabilities, design flaws, and insecure coding practices through the review
  • Analyze the identified vulnerabilities for true positive and false positives, accordingly propose remediations to the development teams
  • Provide recommendations, support, and guidance to the developers to prioritize remediations

Collaboration and Documentation:

  • Connect & collaborate with Application Security Product Manager/Owners to ensure alignment on processes and ways of working
  • Work closely with other Security & IT teams across organization: Security architects, Application developers, DevOps engineers, and Business stakeholders etc.
  • Provide technical support in the areas of application security and produce detailed and effective documentations

Continuous Learning and Development:

  • Participate in Security threat and monitoring forums to learn and keep abreast of the latest security trends, threats, and vulnerabilities, continually building knowledge in the cyber threat landscapes and good practices
  • Participate in workshops, training, certifications & security conferences to enhance skills in Cyber Security

Benefits

  • You will be part of a truly international team
  • Travel opportunities (domestic and international)
  • Competitive remuneration, bonus, and incentives
  • Good work / life balance and career growth opportunities
  • Training and development opportunities (online, classroom, conferences)
  • Comprehensive benefits package (complementary health and life insurance)

Success Metrics

  • Consistently ensure the on-time delivery and quality (first-time-right) of the projects
  • Bring innovative cost-effective solutions
  • Achieve customer satisfaction

This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company's success, reputation, and sustainable growth.

Company: Airbus India Private Limited

Employment Type: Permanent

Experience Level: Professional

Job Family: Cyber Security <JF-CG-ST>

+ Show Original Job Post
Suggest a correction
























Application Security Engineer
Bangalore
Engineering
Apply to job
About Airbus
A leading global aerospace corporation, specializing in the design and manufacture of commercial aircraft, military planes, helicopters, and space systems.