Application Security Specialist at Entain

Hyderabad, Telangana, India -

Full Time

Start Date

Immediate

Expiry Date

18 Jul, 26

Salary

0.0

Posted On

19 Apr, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Application Security, Security Testing, Penetration Testing, SAST, DAST, WAF, Java, C/C++, Python, Agile Development, Vulnerability Management, Secure Coding, ISO27001, PCI-DSS, Security Architecture, Threat Mitigation

Industry

Entertainment Providers

Description

Company Description Entain India is the engineering and delivery powerhouse for Entain, one of the world’s leading global sports and gaming groups. Established in Hyderabad in 2001, we’ve grown from a small tech hub into a dynamic force, delivering cutting-edge software solutions and support services that power billions of transactions for millions of users worldwide. Our focus on quality at scale drives us to create innovative technology that supports Entain’s mission to lead the change in global sports and gaming sector. At Entain India, we make the impossible possible, together. Job Description This role works closely with the development teams to verify that our applications satisfy the defined security criteria, supporting the organization on the secure design of our gaming platform and conducting reviews of the developed applications, while improving the automation of security in our development lifecycle. Primary Responsibilities: Conduct comprehensive assessments of applications to identify potential security risks and vulnerabilities. Utilise industry-standard tools and methodologies to perform security testing, code reviews, and penetration testing. Design and implement robust security architectures for applications, considering factors such as authentication, authorisation, encryption, and data protection. Ensure compliance with relevant security standards and regulations. Manage and maintain security tools and technologies used for application security testing and monitoring. Configure, deploy, and optimise security tools such as static code analysis (SAST), dynamic application security testing (DAST), and web application firewalls (WAFs) to enhance the security posture of applications. Promote a culture of security awareness among development teams and stakeholders. Provide training sessions and resources to educate colleagues on secure coding practices, threat mitigation techniques, and compliance requirements. Enforce security policies, standards, and controls for applications in alignment with organisational goals and regulatory requirements. Conduct regular audits and assessments to ensure compliance and mitigate risks. Collaborate closely with development teams, Product, IT operations, project managers, and other stakeholders to integrate security into the software development lifecycle. Provide guidance and support to ensure security considerations are addressed throughout the application development process. Proactively identify opportunities for improvement and optimization of security controls, processes, and technologies. Respond promptly to security breaches, investigate root causes, and implement corrective actions to prevent future occurrences. Occasional Responsibilities: Travel to Development centres Qualifications The role requires a person with outstanding technical foundations and a development background that has experience in conducting application security assessments and is able to interact with development teams to resolve the identified issues. Essential Software Development Background At least 6 years experience in a similar Information Security position Customer-oriented person, with the ability to educate and influence a technical audience on Application Security matters Fluent in relevant development languages (Java, C/C++, Perl, PHP, .NET, Python …) Experience in the following areas: Security Test Management Application Security Assessments Security Assurance Requirements Management Knowledge of major frameworks and support libraries (SPRING, OSGI, ASP.NET, etc.) Agile Development Vulnerability management Continues Improvements Penetration Testing Security Evaluation & Functional Testing Application Security Testing Desired Open source projects Online Gaming security experience Regulatory and industry standards work: ISO27001, PCI-DSS, etc. Experience in Automation Relevant professional qualifications will be considered, although not a requirement, e.g. GIAC, CISA, CISM, CISSP, CEH, etc. Additional Information We know that signing top players requires a great starting package, and plenty of support to inspire peak performance. Join us, and a competitive salary is just the beginning. Depending on your role and location, you can expect to receive benefits like: Safe home pickup and home drop (Hyderabad Office Only) Group Mediclaim policy Group Critical Illness policy Communication & Relocation allowance Annual Health check And outside of this, you’ll have the chance to turn recognition from leaders and colleagues into amazing prizes. Join a winning team of talented people and be a part of an inclusive and supporting community where everyone is celebrated for being themselves. Advertising Department: Technology Referral Band: ♣

Responsibilities

The role involves conducting comprehensive application security assessments and collaborating with development teams to integrate security into the software development lifecycle. You will also manage security tools, enforce security policies, and provide training on secure coding practices.