×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer Security Manager Data Security

Senior Application Security Engineer

Job in 500001, Hyderabad, Telangana, India
Listing for: Callaway Digital Technologies
Full Time position
Listed on 2026-06-17
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer, Security Manager, Data Security
Job Description & How to Apply Below
Job Description Summary
This position is responsible for ensuring that the Company’s applications, APIs, and edge delivery platforms are secure from vulnerabilities and malicious attacks that may compromise systems, data, or intellectual property. This role performs application security engineering tasks including secure code analysis, vulnerability scanning, CDN/WAF protection, threat detection, and remediation, while supporting enterprise Dev Sec Ops  initiatives.

Job Overview
Callaway is seeking a Senior Application Security Engineer to support the design, implementation, and governance of security controls across modern application environments. This role focuses on securing the full application lifecycle through secure code review, runtime application protection and application vulnerability assessment, while strengthening protections across cloud-native platforms and edge delivery.

The ideal candidate will have strong hands-on experience in application security, Dev Sec Ops , and modern web application architectures, with the ability to partner closely with engineering teams to identify, prioritize, and remediate security risks across development, runtime, and external attack surfaces.

Roles and Responsibilities
Implement and maintain application security controls across Azure-based and cloud-native environments
Integrate Git Hub Advanced Security (GHAS) including CodeQL, Dependabot, and Secret Scanning into CI/CD pipelines
Perform secure code reviews and enforce secure development best practices
Deploy and manage Tenable for application vulnerability scanning (DAST), including authenticated and unauthenticated scans
Identify, prioritize, and remediate application and API vulnerabilities based on risk and exploitability
Configure and optimize CDN/WAF protections using Cloudflare and Vercel, including rate limiting, bot mitigation, and custom rules
Protect applications from OWASP Top 10 threats, API abuse, credential stuffing, and Layer 7 DDoS attacks
Secure application authentication and authorization using Azure AD (Entra ), OAuth2, and OIDC
Integrate application, CDN, and identity logs into SIEM platforms (Sumo Logic) for monitoring and detection
Develop and tune detection rules for threats such as WAF bypass, API misuse, and anomalous authentication activity
Partner with Dev Ops and engineering teams to embed security into CI/CD pipelines and infrastructure workflows
Implement and enforce secure use of Azure services (Key Vault, API Management, Defender for Cloud)
Automate security controls using APIs, policy-as-code (Azure Policy), and detection-as-code frameworks
Contribute to application security standards, architecture patterns, and best practices
Provide guidance, mentorship, and training to development teams on secure coding and application security

Technical Competencies (Knowledge, Skills & Abilities)
Strong understanding of application security principles including OWASP Top 10 and API Security Top 10

Experience with Git Hub Advanced Security (CodeQL, Dependabot, Secret Scanning)
Hands-on experience with Tenable or similar DAST tools for application scanning

Experience with CDN/WAF platforms such as Cloudflare and/or Vercel
Knowledge of authentication and authorization standards (OAuth2, OIDC, JWT)
Familiarity with Azure cloud security services (App Services, AKS, Key Vault, APIM, Entra )
Experience integrating logs and telemetry into SIEM platforms (Sumo Logic preferred)
Understanding of Dev Sec Ops  practices and CI/CD pipeline security
Knowledge of containerized and microservices architectures
Strong analytical, troubleshooting, and problem-solving skills
Ability to work collaboratively with development and platform engineering teams

Education & Experience
5–10+ years of experience in Application Security, Dev Sec Ops , or related field
Bachelor’s degree in Computer Science, Information Security, or related discipline, or equivalent experience
Hands-on experience with:
Azure cloud platforms
Application security tooling (GHAS, Tenable)
CI/CD pipelines (Git Hub, Azure Dev Ops)

Experience with CDN/WAF technologies and edge security strongly preferred
Familiarity with SIEM and detection engineering concepts (Sumo Logic preferred)
Relevant certifications preferred (e.g., AZ-500, CISSP, CSSLP, OSCP)
Position Requirements
10+ Years work experience
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search