Skip to main content
Posted 15 June, 2026

AppSec Specialist

VARITE INDIA PRIVATE LIMITED
Bangalore, Karnataka, IN Full Time
Reference: 26-33843-2522-2

Company Name: VARITE India Private Limited

About The Client:

An Indian multinational information technology (IT) consulting company headquartered in Noida, The company has offices in 52 countries and over 225,944 employees. The Client is a global IT services and consulting company that offers a wide range of services and products across various industries like IT Infrastructure Services, Cybersecurity Services, Cloud Services, Big Data and Analytics, Internet of Things (IoT) Solutions, Semiconductor Services and Enterprise Software Products.

About The Job:

  • The Application Security Engineer (Threat Modeling) operates as a mid-level individual contributor focused on securing our business-standard web applications.
  • In this role, you will own the day-to-day security-by-design initiatives by systematically applying the STRIDE methodology to identify architectural flaws before code deployment.
  • You will collaborate directly with product engineering teams to uncover and mitigate Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, and Elevation of Privilege risks.
  • Exp: 9 to 12 years

Essential Job Functions:

  • Conduct STRIDE Assessments:
    • Independently perform threat modeling on core web applications, APIs, and microservices using the STRIDE framework.
  • Deconstruct Web Architecture:
    • Analyze data flow diagrams (DFDs), component architecture, and trust boundaries to map out potential attack paths.
  • Define Actionable Requirements:
    • Translate STRIDE findings into clear, developer-friendly user stories and acceptance criteria within Jira or engineering backlogs.
  • Track Mitigation Lifecycles:
    • Monitor the implementation of security controls and verify remediation.
  • Maintain Threat Repositories:
    • Keep threat models up to date as application features evolve.

Qualifications:
Technical Qualifications

  • Experience: 3 to 5 years of experience in Application Security, Product Security, or software development with a heavy focus on security design.
  • Web App Security Expertise:
  • Solid understanding of web technologies, HTTP protocols, browser security (CORS, CSP, SameSite cookies), and the OWASP Top 10.
Practical STRIDE Skills:
  • Demonstrated experience breaking down functional application designs into STRIDE categories to catch flaws early.
  • Modern Development Stack:
    • Familiarity with standard web stacks (e.g., React, Node.js, Java, .NET) and modern CI/CD software pipelines.
Threat Modeling Tooling:
  • Hands-on experience with tools like the Microsoft Threat Modeling Tool, OWASP Threat Dragon, IriusRisk, or similar diagramming solutions.
Professional Skills
  • Independent Execution:
  • Ability to manage multiple threat modeling projects concurrently with guidance only on highly complex architectures.
  • Engineering Empathy:
    • Skill in collaborating constructively with software engineers, offering practical remediation advice rather than just pointing out flaws.
  • Clear Communication:
    • Ability to articulate technical security risks and their direct business impacts clearly in both written reports and verbal discussions.
How to Apply: Interested candidates are encouraged to respond/submit their updated resumes, and for additional job opportunities, please visit Jobs In India – VARITE.

Unlock Rewards: Refer Candidates and Earn.

If you're not available or interested in this opportunity, please pass this along to anyone in your network who might be a good fit and interested in our open positions. VARITE offers a Candidate Referral program, where you'll receive a one-time referral bonus based on the following scale if the preferred candidate completes a three-month assignment with VARITE.

Experience Level Bonus Referral:
0-2 years INR 5,000
2-6 years INR 7,500
6+ years INR 10,000


About VARITE: VARITE is a global staffing and IT consulting company providing technical consulting and team augmentation services to Fortune 500 Companies in USA, UK, CANADA and INDIA. VARITE is currently a primary and direct vendor to the leading corporations in the verticals of Networking, Cloud Infrastructure, Hardware and Software, Digital Marketing and Media Solutions, Clinical Diagnostics, Utilities, Gaming and Entertainment, and Financial Services.

Equal Opportunity Employer:
VARITE is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate based on race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, marital status, veteran status, or disability status.


body { font-family: Calibri, sans-serif; font-size: 12pt; }

Sign up for Job Alerts