Application Security Specialist (4+ years)

Location: Mumbai
Discipline: Legal, Risk & Compliance
Job type: Permanent
Contact name: Nishant Sharma

Contact email:
Job ref: 37682
Published: 3 days ago

Specialist – Application Security (3-6 years)

Job opportunity for a working professional having at least 3 years of experience in cyber and information security & providing remediation and risk management guidance. This role requires working in partnership with multiple development teams to ensure that testing tooling is working effectively and is fit for purpose.

Location: Mumbai

Your Employer: A leading, global group with a strong foothold in specialty financial services serving millions of customers across the full spectrum.


  • Working in collaboration with the development teams ensuring they are fully integrated.

  • Input into the vulnerability assessment and support remediation planning.

  • User account management, housekeeping, role-based access (RBAC) for the testing tools.

  • Supporting development teams to conduct security tests using the current WTW static code analysis (SAST) and web application scanning tools (DAST).

  • Providing training to development teams on the use of the corporate static code analysis and web application scanning tools

  • Providing administrative and 1st line support for static code analysis and web application scanning tools. This includes systems maintenance, user access and segregation and appliance deployments

  • Providing technical security expertise for the secure configuration of the code analysis tools

  • Ensuring vulnerabilities identified as a result of static code analysis and web application scanning are either remediated or managed via the WTW risk management framework

  • Producing data to support MI reports pertaining to thevulnerabilities identified using application security tools

  • Supporting the automated testing manager


  • Qualified to degree level, preferably in a business, IT or security related subject

  • 3-5 yrs of relevant experience

  • Software development, and secure coding practices

  • Web Applns testing & configuration

  • Azure DevOps

  • MS SQL Server

  • Scoping and managing penetration testing activities

  • Application and infrastructure security principles

  • .NET

  • Experience in testing of OS and DB controls

  • SharePoint

What is in it for you?

An opportunity to work with global clientele in a fast-paced environment with a growth oriented & enthusiastic team.

Reach us

If you think that this role will add value to your career, kindly write me an email along with your updated CV on


Disclaimer: Crescendo Global is an ISO 9001:2015 certified Leadership Hiring consulting arm of Crescendo Group with expertise in mid to senior level niche recruitment. We are passionate about empowering job seekers and employers with an engaging memorable job search and leadership hiring experience. Crescendo Global does not discriminate on the basis of race, religion, color, origin, gender, sexual orientation, age, marital status, veteran status or disability status.


Keywords: Information Security, Application Security, Secure Coding Practices