CrawlJobs Logo

Capability Lead – Application Security

India, Hyderabad · Job Posted July 04, 2026
Apply Position
Job Link Share

Job Description

Capability Lead – Application Security at NTT DATA. Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive. Application Security Capability Leads should possess strong experience in application security and actively contribute to the development and maturity of the application security practice. This includes hands-on expertise across application security domains, supporting practice growth, enabling go-to-market initiatives, and contributing to thought leadership and best practices within the practice.

Job Responsibility

  • Develop and execute strategic plans for the application security practice
  • Develop/enhance service capabilities in the areas of application security including application security assessments, threat modelling, vulnerability scanning, penetration testing, and code reviews to identify and mitigate potential security issues
  • Develop service offerings, pricing strategies, and sales collateral
  • Oversee security assessments programs (DAST/SAST/SCA) and application security audits
  • Collaborate with sales teams, pre-sales teams and other internal and external stakeholders to proactively position application security services to customers
  • Establish solution/service center of excellence (CoE) through collaboration with vendors and partners including startups
  • Stay updated on the latest security threats, trends, and technologies to provide advisory to customers
  • Govern application security delivery
  • Manage application security CoEs to Stay up-to-date with emerging threats, technologies, and application exploit techniques
  • Collaborate with sales teams to develop and execute go-to-market strategies
  • Develop and deliver thought leadership content (e.g., blog posts, white papers, webinars, conference talks)
  • Build relationships with key clients, partners, and industry influencers
  • Lead and mentor a team of security professionals, including managers and individual contributors
  • Foster a culture of innovation, collaboration, and continuous learning

Requirements

  • 15+ years of experience in application security, with 8+ years in leadership roles
  • Proven track record of building and managing successful security practices
  • Strong knowledge of penetration testing, red teaming, purple teaming, breach attack simulation, and ethical hacking
  • Experience with practice development, go-to-market strategies, and sales enablement
  • Excellent leadership, communication, and interpersonal skills
  • Industry-recognized security certifications (e.g., OSCP, CEH, CISSP, CISA, CISM)

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Capability Lead – Application Security

8 matching positions

Application Security Lead

As the Manager, Application Security Lead at Vocalink Limited, you will play a c...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
mastercard.com Logo
Mastercard
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in application security, including hands-on experience with secure coding practices, code review, and vulnerability assessment tools
  • Strong understanding of software development methodologies, programming languages, and web technologies
  • Experience leading or managing a team of security professionals
  • Excellent communication skills, with the ability to effectively communicate technical concepts to non-technical stakeholders
  • Strong analytical and problem-solving skills, with the ability to think critically and creatively to identify and mitigate security risks
  • Ability to work independently and collaboratively in a fast-paced environment
  • Experience initiating and managing improvement in areas of security by leveraging process metrics
  • Strong understanding of the payments industry regulatory landscape and compliance requirements
  • Ability to articulate themselves clearly and concisely to a broad range of senior and junior stakeholders, acting as a bridge as well as guide for the implementation of new capabilities
  • Excellent communication and leadership skills with the ability to collaborate effectively across departments
Job Responsibility
Job Responsibility
  • Develop and implement strategies for integrating security assurance into the software development process
  • Establish and execute on forward looking application security strategies that enables proactive secure application development
  • Collaborate with development teams in conducting security reviews, threat modelling, and code analysis to identify and mitigate security vulnerabilities
  • Provide guidance and training to developers on secure coding practices, security best practices, and common vulnerabilities
  • Advise on the development and maintenance of security standards, policies, and guidelines for application development
  • Lead the Penetration Testing tower of Vulnerability Management
  • ensuring that taxonomies and methodologies reflect the needs of Vocalink and that appropriate testing is carried out
  • Stay updated on emerging threats, vulnerabilities, and industry trends in application security, and ensure that security measures are continuously improved and updated
  • Collaborate during regular security assessments and penetration testing of applications to help resolver groups address security weaknesses
  • Serve as a subject matter expert on application security, providing guidance and recommendations to stakeholders across the organization
  • Fulltime
Read More
Arrow Right

Senior Security Engineer - Application Security

This is an opportunity to join K's critical InfoSec team as a Senior Security En...
Location
Location
United States , New York
Salary
Salary:
150000.00 - 185000.00 USD / Year
khealth.com Logo
K Health
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Information Security, Cloud Security, IT Security, and/or Application Security
  • Strong expertise in cloud technology (AWS, GCP, or Azure), modern programming languages, utilization of generative coding utilities, and the security implications of utilizing AI code development utilities
  • Demonstrated experience researching, establishing, and successfully rolling out enterprise-wide security policies and guidelines
  • Proven experience establishing a cutting-edge security posture, particularly within the regulated healthcare technology field
  • Excellent communication skills, capable of translating complex security risks into clear, actionable advice for technical and non-technical stakeholders
  • Expertise in compliance, security, and regulatory areas such as
  • HIPAA, PHI, AKS, SOC 2, ISO, GDPR, etc.
  • Flexibility in covering a rotation for critical on-call support responsibilities
Job Responsibility
Job Responsibility
  • Lead the development and implementation of robust application security protocols throughout the entire Software Development Lifecycle (SDLC)
  • Design, deploy, and continuously monitor cloud security architecture across our cloud environments, ensuring performance and resilience
  • Manage the security posture of K’s core IT infrastructure, internal networks, and perimeter defenses, mitigating threats before they impact operations
  • Ensure adherence to relevant healthcare regulatory and compliance requirements (e.g., HIPAA, GDPR, etc.) across all product lines and systems
  • Conduct proactive vulnerability assessments, penetration tests, and security reviews to identify and remediate potential weaknesses in our platforms
  • Collaborate with engineering teams to integrate security tools and practices into continuous integration/continuous deployment (CI/CD) pipelines
What we offer
What we offer
  • Hybrid work schedule with weekly lunches and stocked fridges
  • Monthly social committees for company events
  • 18 vacation days, 9 company holidays, 5 sick days, and 2 personal days
  • Stock options for every full-time employee
  • Paid parental leave
  • 401k benefit
  • Commuter Benefits
  • Competitive health, dental, and vision insurance options
  • Fulltime
Read More
Arrow Right

Application Security Research Team Leader

Checkmarx is the AI-powered application security leader helping the world’s most...
Location
Location
Portugal , Braga
Salary
Salary:
Not provided
checkmarx.com Logo
Checkmarx
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of proven experience as a Team Leader / Engineering or Research Manager
  • Demonstrated experience leading remote and distributed teams, ideally across multiple locations, cultures, and time zones
  • Strong command of asynchronous working methods, clear written communication, documentation discipline, and decision-making that doesn't require everyone online at once
  • Track record of continuous improvement and people development: growing team members, supporting career paths, and raising the bar over time
  • Experience defining and managing KPIs/OKRs, roadmaps, and prioritization in a research or engineering context
  • Highly organized, with the ability to structure work, manage dependencies, and keep a distributed team aligned
  • Cultural awareness and the ability to build cohesion across geographically and culturally diverse team members
  • Solid and extensive knowledge of Application Security
  • Deep understanding of security concepts, vulnerabilities, mitigations, and secure coding practices
  • Professional security experience (Security research, web application penetration testing, secure development, secure code review, or similar fields)
Job Responsibility
Job Responsibility
  • Lead, mentor, and grow a distributed team of security researchers working across multiple locations (PT and IL) and time zones
  • Own the team's operating model: effort estimation, resource allocation, prioritization, and capacity planning
  • Define and track team and individual KPIs and OKRs
  • turn them into clear, measurable goals and review progress on a regular cadence
  • Build and maintain the team's research roadmap in alignment with the broader Security Research group and product strategy
  • Run effective async-first rituals (written updates, documented decisions, structured handoffs) so the team stays aligned across time zones without depending on real-time overlap
  • Drive a culture of continuous improvement with retrospectives, feedback loops, and iterative refinement of how the team works
  • Own each team member's growth: regular 1:1s, career-path planning, skills development, and performance reviews
  • Foster an inclusive, high-trust environment that unites team members across locations into one cohesive team
  • Lead research initiatives across application security, AI security, and emerging technologies
What we offer
What we offer
  • great work environment
  • professional development
  • challenging careers
  • competitive compensation
  • great work-life balance
  • great benefits and perks throughout the year
  • Fulltime
Read More
Arrow Right
New

Lead Security Analyst

Made Tech helps UK public sector organisations build and run better digital serv...
Location
Location
United Kingdom , Bristol; London; Manchester; Swansea
Salary
Salary:
65000.00 - 80000.00 GBP / Year
madetech.com Logo
Made Tech
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • CompTIA Advanced Security Practitioner (CASP+)
  • Experience leading detection engineering in a SOC or similar environment — including writing and tuning detections in KQL, SPL, EQL, or Sigma, and managing coverage against MITRE ATT&CK
  • Experience designing or improving a log and telemetry pipeline, including application-level telemetry from cloud-hosted services (AWS is a strong preference at this grade), with an understanding of how to design monitoring for failure modes and degraded states
  • Evidence of running the intelligence cycle as a managed discipline — collection planning, production, and feedback — rather than consuming finished intelligence
  • Working knowledge of UK government security standards and frameworks, including NCSC CAF Objective C, GovAssure, and OFFICIAL handling requirements
  • Experience establishing incident response practice — playbooks, severity models, and exercises — not just responding to individual incidents
  • Evidence of growing the technical capability of less experienced analysts through pairing, structured mentoring, or coaching, including setting clear goals and tracking progress over time
  • Experience anchoring delivery on client outcomes rather than task completion — challenging the brief where it serves the client and making value visible rather than reporting effort
Job Responsibility
Job Responsibility
  • Set the detection engineering standard — author, tune, and peer-review detections in KQL, SPL, EQL, or Sigma
  • manage the false-positive backlog
  • map coverage to MITRE ATT&CK
  • and train L1/L2 analysts to write and tune detections themselves
  • Own the threat-landscape narrative for your engagement — turn intelligence from NCSC advisories, sector feeds, and threat actor reporting into hunt themes, coverage gap analysis, and detection priorities that the SOC and client stakeholders can act on
  • Run the intelligence cycle as a managed discipline — maintain a collection plan, produce timely and rigorous intelligence products, and build feedback loops that keep the cycle honest and improving
  • Establish and lead security incident response practice — build playbooks, define the severity model, run exercises, and lead the team's response to significant incidents
  • run blameless post-mortems that the team actually learns from
  • Design the log and telemetry pipeline that detections run on — including bespoke application telemetry in cloud environments, not just commodity endpoint feeds
  • ensure the right signals are collected, parsed, and retained for both detection and investigation
What we offer
What we offer
  • 30 days Holiday
  • Flexible Working Hours
  • Flexible Parental Leave
  • Remote Working
  • Paid counselling
  • Smart Tech scheme
  • Cycle to work scheme
  • individual benefits allowance which you can invest in a Health care cash plan or Pension plan
  • optional social and wellbeing calendar of events
  • Fulltime
Read More
Arrow Right

Ai Lead Application Architecture - Vice President

We are seeking a highly experienced and technically proficient Sr Applied AI Eng...
Location
Location
India , Pune
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15 years of relevant experience in leading Apps Development or systems design role
  • Extensive experience system analysis and in programming of software applications
  • Demonstrable exposure and practical experience with AI development
  • Knowledge of capital market is plus
  • Experience in managing and implementing successful projects
  • Subject Matter Expert (SME) in at least one area of Applications Development
  • Ability to adjust priorities quickly as circumstances dictate
  • Demonstrated leadership and project management skills
  • Consistently demonstrates clear and concise written and verbal communication
  • Bachelor’s degree/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Lead the design, development, and implementation of complex middleware applications using Java and Spring Boot: Utilize AI-powered code generation tools (e.g., Devin, Copilot, Codex) to accelerate development, automate boilerplate code, suggest optimal implementations, and enforce architectural patterns. Leverage AI for design pattern identification and complex system architecture validation
  • Architect and optimize database interactions with Oracle, SQL, and MongoDB, ensuring high performance and data integrity: Employ AI to analyze database query performance, suggest advanced indexing strategies, optimize schema designs, and generate efficient SQL/NoSQL queries. AI-driven tools can also assist in predicting database load and recommending scaling solutions
  • Drive the adoption and continuous improvement of CI/CD pipelines to facilitate rapid and reliable software delivery: Integrate AI into CI/CD processes for intelligent test case generation, predictive failure analysis, automated code vulnerability scanning, and optimization of pipeline execution times based on historical data
  • Collaborate with cross-functional teams, including product management, QA, and operations, to define requirements, design solutions, and deliver high-quality software:Use AI-powered communication and summarization tools (e.g., Claude) to streamline requirement gathering, document analysis, and stakeholder communication. AI can also assist in translating technical designs into accessible formats for various audiences
  • Mentor and provide technical guidance to junior and mid-level software engineers, fostering a culture of technical excellence and continuous learning: Leverage AI platforms for personalized learning paths, automated code feedback, and explanations of complex technical concepts. Encourage junior engineers to adopt AI-driven development practices
  • Actively research and experiment with AI technologies to identify opportunities for enhancing developer productivity, automating tasks, and improving software quality:Continuously explore emerging AI tools and techniques (such as Anti Gravity for complex problem-solving) and assess their applicability to our development ecosystem
  • Participate in code reviews, ensuring adherence to coding standards, best practices, and architectural guidelines: Utilize AI-powered code analysis tools to pre-scan code for potential bugs, security vulnerabilities, performance bottlenecks, and style deviations, allowing human reviewers to focus on higher-level logic and design
  • Troubleshoot and resolve complex technical issues, ensuring the stability and performance of production systems: Implement AI-driven anomaly detection in monitoring systems, leverage AI for rapid log analysis and root cause identification, and automate incident response workflows
  • Contribute to the strategic planning and technical roadmap for our middleware platforms: Employ AI to analyze industry trends, forecast technology evolution, assess the impact of new features, and prioritize roadmap initiatives based on data-driven insights
  • Conduct tasks related to feasibility studies, time and cost estimates, IT planning, risk technology, applications development, and model development: Utilize AI for data synthesis, predictive modeling for estimations, identification of potential IT risks, and accelerated model prototyping and validation
  • Fulltime
Read More
Arrow Right

Physical Security Application Engineer

The Physical Security Application Engineer operates within the Design & Engineer...
Location
Location
United Kingdom , Camberley
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience designing, architecting, and commissioning physical security systems in enterprise or public sector environments
  • Hands-on delivery across enterprise VMS and access control platforms (e.g. Genetec, Milestone, Gallagher), with relevant certifications preferred
  • Strong knowledge of CCTV, access control, IP networking, and infrastructure
  • Experience producing HLDs, LLDs, and full system architecture documentation
  • Familiar with FAT, SAT, and SIT testing processes
  • Solid understanding of Windows Server, enterprise IT environments, and domain infrastructure
  • Working knowledge of integration technologies and security system protocols
  • Networking knowledge to CCNA level or equivalent
Job Responsibility
Job Responsibility
  • Work closely with clients and stakeholders to capture operational, functional, and technical requirements across the project lifecycle
  • Provide trusted advisory services, helping clients shape their security technology strategy and understand the implications of design and platform decisions
  • Support bids, tenders, and professional services engagements with credible technical input
  • Operate consultatively across all phases of an engagement, not just at the point of delivery
  • Develop High-Level Designs (HLDs) and system architectures during bid and solution stages
  • Produce Stage 4 detailed designs and Low-Level Designs (LLDs) suitable for installation and delivery
  • Design complex, multi-system integrated solutions (CCTV, Access Control, analytics, networks, and supporting infrastructure)
  • Ensure designs incorporate resilience, scalability, cybersecurity, and compliance requirements
  • Act as Design Authority across assigned projects, ensuring all deliverables align to approved designs
  • Provide technical oversight throughout installation, testing, and commissioning phases
  • Fulltime
Read More
Arrow Right

Physical Security Application Engineer

The Physical Security Application Engineer operates within the Design & Engineer...
Location
Location
United Kingdom , Newcastle upon Tyne
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience designing, architecting, and commissioning physical security systems in enterprise or public sector environments
  • Hands-on delivery across enterprise VMS and access control platforms (e.g. Genetec, Milestone, Gallagher), with relevant certifications preferred
  • Strong knowledge of CCTV, access control, IP networking, and infrastructure
  • Experience producing HLDs, LLDs, and full system architecture documentation
  • Familiar with FAT, SAT, and SIT testing processes
  • Solid understanding of Windows Server, enterprise IT environments, and domain infrastructure
  • Working knowledge of integration technologies and security system protocols
  • Networking knowledge to CCNA level or equivalent
Job Responsibility
Job Responsibility
  • Work closely with clients and stakeholders to capture operational, functional, and technical requirements across the project lifecycle
  • Provide trusted advisory services, helping clients shape their security technology strategy and understand the implications of design and platform decisions
  • Support bids, tenders, and professional services engagements with credible technical input
  • Operate consultatively across all phases of an engagement, not just at the point of delivery
  • Develop High-Level Designs (HLDs) and system architectures during bid and solution stages
  • Produce Stage 4 detailed designs and Low-Level Designs (LLDs) suitable for installation and delivery
  • Design complex, multi-system integrated solutions (CCTV, Access Control, analytics, networks, and supporting infrastructure)
  • Ensure designs incorporate resilience, scalability, cybersecurity, and compliance requirements
  • Act as Design Authority across assigned projects, ensuring all deliverables align to approved designs
  • Provide technical oversight throughout installation, testing, and commissioning phases
  • Fulltime
Read More
Arrow Right

Principal Solutions Engineer - Application Security

As a Principal Solutions Engineer you will work closely with Wiz’s CTO, Field CT...
Location
Location
Germany
Salary
Salary:
Not provided
wiz.io Logo
Wiz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong technical background with a solid understanding of core IT, InfoSec, Cloud, and DevOps concepts
  • Proven skillset and experience with a career path focused on public cloud architecture (AWS, Azure, GCP)
  • Deep, practical knowledge of the AppSec landscape, including Application Security Posture Management (ASPM), SAST, DAST, SCA, and the operational use of SBOMs (SPDX/CycloneDX) and their practical use cases for vulnerability and license management
  • Demonstrable proficiency in one or more high-level languages (e.g., Python, Go, Rust) and/or advanced shell scripting
  • Experience and ability to code and understand developer workflows. Git, CI/CD, helm, terraform etc
  • SME level knowledge of Kubernetes and containers with the ability to architect and troubleshoot complex environments
  • Exceptional ability to present complex technical concepts to a wide range of audiences—from deeply technical developer teams to executive-level (CISO, CTO) stakeholders
  • Be passionate in regard to continuous self-improvement and learning to maintain technical leadership
  • Full professional fluency in German (written and verbal)
Job Responsibility
Job Responsibility
  • Serve as the company's top field expert in application and cloud-native security and provide technical and business-relevant feedback into Product Management based on field engagements to improve Wiz’s position and value messaging to prospects and clients
  • Collaborate with Wiz sales teams on strategic opportunities in demonstrating the business and technical value of the Wiz platform
  • Assist SEs and prospects during the POC process with advanced use cases, installation/deployment, and troubleshooting
  • Lead regular thought leadership sessions with the field teams sharing insights and approaches derived through customer engagement to improve our effectiveness in messaging and delivering value to prospective clients and existing customers
  • Assist in messaging and selling Wiz platform capabilities to prospects and customers
  • Fulltime
Read More
Arrow Right