View All Jobs 117994

Application Security Engineer

Perform comprehensive penetration testing and security assessments for cloud-based applications
Pune, Mahārāshtra, India
Senior
2 weeks ago
VertoFX

VertoFX

A fintech platform specializing in currency exchange and international payments for businesses, with a focus on emerging markets.
1 Similar Job at VertoFX

Devsecops Engineer

We're seeking a skilled DevSecOps Engineer who is passionate about security testing and securing modern applications.

What You'll Be Doing

  1. Conduct in-depth penetration testing for Web, API, and Mobile (iOS & Android) applications.

  2. Perform secure code reviews and provide actionable remediation guidance, especially for Node.js.

  3. Automate security testing and integrate tools into CI/CD pipelines.

  4. Writing scripts for automating mundane security tasks.

  5. Develop and implement security best practices (OWASP Top 10, SANS 25).

  6. Monitor and strengthen AWS cloud security configurations, including AWS auditing and AWS penetration testing.

  7. Collaborate with development teams for early-stage threat modeling and risk assessments.

  8. Create and maintain security playbooks for incident response.

  9. Stay ahead of emerging threats and introduce new security methodologies.

What You Need

  • Proven experience in penetration testing for Web, API, and Mobile (iOS & Android) applications.

  • Strong expertise in security testing tools (e.g., Burp Suite, OWASP ZAP, Python scripting).

  • Proficiency in scripting languages such as Python or other relevant languages (e.g., PowerShell, Bash)

  • Hands-on experience in secure code reviews and remediation guidance.

  • Solid understanding of OWASP Top 10, SANS 25, and other security frameworks.

  • Experience integrating security tools into CI/CD pipelines.

  • Cloud security expertise, particularly in AWS (IAM, security monitoring, infrastructure security).

  • Familiarity with Agile and DevOps methodologies with a security-first mindset.

Best If You Have

  • Experience with Node.js applications for code reviews and remediation.

  • Relevant certifications (e.g., OSCP, CISSP, CEH, AWS Security Specialty, Certified DevSecOps Engineer).

  • Experience working in a fast-paced startup environment.

  • Experience working in a DevOps environment - Product Team.

  • Experience with Infrastructure as Code (IaC) tools (Terraform, Ansible)

  • Experience with specific industry domains (e.g., Fintech, Logistics, E-commerce) where robust application security is critical.

Culture At Verto

We're a community of folks who care about their craft, collaborate with purpose, and enjoy the journey together.

General Perks

  • Health & Life insurance, flexible work schedules, generous leave policy

Additional Perks

  • Gym membership, free lunch, car lease policy and a professional development budget

You'll Fit Right In If You

  • Love asking "why?"

  • Value solving problems over just completing tasks

  • Understand sync vs. async communication practices

  • Thrive in ambiguity and change

  • Actively seek feedback

  • Prioritise impact over activity

  • Are fun to work with - we love good humour!

About The Interview Process

It will have (in no strict order) a chat with the talent team, an online assessment round, and 2 (technical + culture) interviews rounds.

+ Show Original Job Post
Suggest a correction
























Application Security Engineer
Pune, Mahārāshtra, India
Engineering
Apply to job
About VertoFX
A fintech platform specializing in currency exchange and international payments for businesses, with a focus on emerging markets.