Application Security Engineer

About MBRDI

Mercedes-Benz Research and Development India (MBRDI), headquartered in Bengaluru with a satellite office in Pune, is the largest R&D center for Mercedes-Benz Group AG outside of Germany. Our mission is to drive innovation and excellence in automotive engineering, digitalization, and sustainable mobility solutions, shaping the future of mobility.

Job Title: Application Security Engineer

Job Overview

We are seeking a highly motivated and experienced Application Security Engineer with 4+ years of hands-on technical experience to join our team and drive DevSecOps initiatives. In this role, you will be instrumental in embedding security throughout the software development lifecycle, from design to deployment and operations. You will leverage your expertise in application security, Azure cloud security, and DevSecOps practices to protect our applications and infrastructure. A strong understanding of cloud-native security principles, particularly within the Azure ecosystem, and experience with security tools like Coverity, Jfrog (Xray), BlackDuck, Polaris, and Wiz is essential. Familiarity with the security implications and best practices for Artificial Intelligence (AI) and Machine Learning (ML) systems is also highly valued.

Key Responsibilities:

• Integrate security tools and processes into the CI/CD pipeline to automate security checks (SAST, DAST, SCA, IaC scanning) using tools like Coverity, Jfrog Xray, BlackDuck, and Polaris.
• Conduct security reviews, threat modeling, and risk assessments for new and existing applications and services, with a focus on Azure-based deployments and AI/ML components.
• Collaborate with development and operations teams to implement security best practices and remediate identified vulnerabilities.
• Utilize Wiz to monitor and improve the security posture of our Azure cloud environments and cloud-native applications.
• Develop and maintain secure coding guidelines, security standards, and DevSecOps best practices, including those specific to AI/ML systems.
• Provide security expertise and guidance to development teams throughout the software development lifecycle.
• Participate in security architecture reviews to ensure security by design for new systems and features, particularly those deployed in Azure and involving AI/ML technologies.
• Support vulnerability management efforts, including scanning, analysis, prioritization, and tracking of remediation activities.
• Assist in the evaluation and selection of new security technologies and tools to enhance our DevSecOps capabilities.
• Stay up-to-date with the latest security threats, vulnerabilities, and industry trends, including advancements in AI/ML security.

Qualifications:

• 4+ years of experience in application security, DevSecOps, or a related field.
• Strong understanding of secure software development lifecycle (SSDLC) and integrating security into CI/CD pipelines.
• Proven experience with Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), and Infrastructure as Code (IaC) security.
• Hands-on experience with security tools such as Coverity (SAST), Jfrog (specifically Xray for SCA and artifact security), BlackDuck (SCA), Polaris (for security orchestration/scanning), and Wiz (for cloud-native security and posture management).
• Solid understanding of cloud security principles and best practices, with significant experience in Azure.
• Familiarity with common application security vulnerabilities (e.g., OWASP Top 10) and mitigation strategies.
• Understanding of security challenges and best practices related to AI/ML models, data, and pipelines (e.g., adversarial attacks, data poisoning, model theft, privacy).
• Experience with scripting languages (e.g., Python, PowerShell, Bash) for automation of security tasks.
• Excellent problem-solving skills and meticulous attention to detail.
• Ability to work independently and collaboratively within a dynamic team environment.
• Must possess strong interpersonal skills, including effective communication, constructive feedback, decision-making, and a high sense of responsibility.

Preferred Qualifications:

• Relevant security certifications such as CSSLP, Azure Security Engineer Associate, AWS Certified Security - Specialty, or equivalent DevSecOps certifications.
• Experience with threat modeling methodologies and tools.
• Knowledge of security frameworks and compliance standards (e.g., ISO 27001, NIST, SOC 2, GDPR) as they apply to application and Azure cloud security.
• Familiarity with container security (e.g., Docker, Kubernetes) and serverless security within Azure (e.g., Azure Kubernetes Service, Azure Functions).
• Experience securing AI/ML development and deployment workflows (MLOps security).
• Experience with security incident response processes related to application vulnerabilities.

Why Join Us?

• Be part of a purpose-driven organization that is shaping the future of mobility

• Work on cutting-edge technologies and global projects

• Thrive in a collaborative, diverse, and inclusive environment

• Access world-class infrastructure and continuous learning opportunities

Equal Opportunity Statement

At MBRDI, we are committed to diversity and inclusion. We welcome applications from all qualified individuals, regardless of gender, background, or ability.