Application Security Engineer Manager

Gurugram - India

Monthly Salary: Not Disclosed

Posted on: Yesterday

Vacancies: 1 Vacancy

Job Summary

At OakNorth were on a mission to empower the UKs most ambitious businesses. Since 2015 weve lent over $21 billion across the UK and US helped create more than 58000 new homes and 36000 new jobs and supported hundreds of thousands of personal savers all while fuelling the UK economy.

Team Mission

Role Overview:

We are seeking an experienced application security engineer to conduct security assessments across web applications APIs mobile applications and cloud hosted solutions; and contribute towards threat modelling and secure design reviews. This role is primarily hands-on offensive security focused on identifying real world vulnerabilities that could impact business. Additionally the role will support threat modelling and secure architecture reviews to help identify potential weaknesses during system design and development.

The successful candidate will demonstrate strong adversarial thinking deep technical expertise and the ability to clearly articulate security risks and practical remediation guidance to both technical and non-technical stakeholders.

Job Responsibilities:

Conduct penetration testing of web applications APIs and mobile applications (iOS/Android).
Conduct threat modelling and secure design reviews to identify potential security risks and vulnerabilities across applications platforms and products.
Partner with product and engineering teams to embed secure-by-design principles into product development including AI systems.
Drive the reduction of critical and high-risk vulnerabilities through root cause analysis and actionable remediation guidance.
Work closely with engineering teams to ensure application security principles are understood and security issues are resolved without impacting delivery timelines.
Deliver security training and awareness sessions for developers and key stakeholders to uplift secure development practices.

Desired Skills:

4-5 years of experience in security assessments and penetration testing of web applications APIs and mobile platforms.
Proven experience in threat modelling and secure design reviews for applications.
Ability to review and interpret code (e.g. React Python JavaScript) to identify security risks and weaknesses.
Strong understanding of common application security vulnerabilities including OWASP Top 10 and SANS Top 25.
Knowledge of AWS security services (e.g. IAM KMS Security Hub GuardDuty network security controls).
Exposure to AI security including associated risks threat models and governance considerations.
Excellent written and verbal communication skills with the ability to clearly articulate risk and influence technical and non-technical stakeholders.
Ability to work independently while collaborating effectively across multiple teams.

We may use artificial intelligence (AI) tools to support parts of the hiring process such as reviewing applications analyzing resumes or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed please contact us.

Required Experience:

Manager

Team Mission

Role Overview:

Job Responsibilities:

Conduct penetration testing of web applications APIs and mobile applications (iOS/Android).
Conduct threat modelling and secure design reviews to identify potential security risks and vulnerabilities across applications platforms and products.
Partner with product and engineering teams to embed secure-by-design principles into product development including AI systems.
Drive the reduction of critical and high-risk vulnerabilities through root cause analysis and actionable remediation guidance.
Work closely with engineering teams to ensure application security principles are understood and security issues are resolved without impacting delivery timelines.
Deliver security training and awareness sessions for developers and key stakeholders to uplift secure development practices.

Desired Skills:

4-5 years of experience in security assessments and penetration testing of web applications APIs and mobile platforms.
Proven experience in threat modelling and secure design reviews for applications.
Ability to review and interpret code (e.g. React Python JavaScript) to identify security risks and weaknesses.
Strong understanding of common application security vulnerabilities including OWASP Top 10 and SANS Top 25.
Knowledge of AWS security services (e.g. IAM KMS Security Hub GuardDuty network security controls).
Exposure to AI security including associated risks threat models and governance considerations.
Excellent written and verbal communication skills with the ability to clearly articulate risk and influence technical and non-technical stakeholders.
Ability to work independently while collaborating effectively across multiple teams.

Required Experience:

Manager

Key Skills

Apply Now

About Company

OakNorth

OakNorth Credit Intelligence Suite transforms commercial lending, giving banks 360° views of borrowers, with deeply granular, forward-looking insight, to improve efficiencies, lower credit risk, and drive profitable growth through economic cycles. Banks lend smarter, lend faster, and ... View more

View Profile View Profile

AI AutoApply

Apply to 100+ jobs with one click