Application Security Engineer

Mercedes-Benz Group AG -
Bengaluru, Karnataka

Apply Now

Job details

Qualifications

CI/CD
Azure
Kubernetes
Software deployment
Bash (Unix shell)
AWS
Docker
Cloud security
Machine learning
Automotive engineering
NIST standards
Continuous integration
Scripting
Software development
ISO 27001
AI
AWS Certified Security – Specialty
Python
PowerShell
SDLC

Full job description

Tätigkeitsbereich:IT/Telekommunikation

Fachabteilung:Security Architecture & GRC

Gesellschaft:Mercedes-Benz Research and Development India Private Limited

Standort:Mercedes-Benz Research and Development India Private Limited, Bangalore

Startdatum:sofort

Veröffentlichungsdatum:20.05.2026

Stellennummer:MER00040M4

Arbeitszeit:Vollzeit

Aufgaben

About MBRDI

Mercedes-Benz Research and Development India (MBRDI), headquartered in Bengaluru with a satellite office in Pune, is the largest R&D center for Mercedes-Benz Group AG outside of Germany. Our mission is to drive innovation and excellence in automotive engineering, digitalization, and sustainable mobility solutions, shaping the future of mobility.

Job Title: Application Security Engineer

Job Overview

We are seeking a highly motivated and experienced Application Security Engineer with 4+ years of hands-on technical experience to join our team and drive DevSecOps initiatives. In this role, you will be instrumental in embedding security throughout the software development lifecycle, from design to deployment and operations. You will leverage your expertise in application security, Azure cloud security, and DevSecOps practices to protect our applications and infrastructure. A strong understanding of cloud-native security principles, particularly within the Azure ecosystem, and experience with security tools like Coverity, Jfrog (Xray), BlackDuck, Polaris, and Wiz is essential. Familiarity with the security implications and best practices for Artificial Intelligence (AI) and Machine Learning (ML) systems is also highly valued.

Key Responsibilities:

Integrate security tools and processes into the CI/CD pipeline to automate security checks (SAST, DAST, SCA, IaC scanning) using tools like Coverity, Jfrog Xray, BlackDuck, and Polaris.
Conduct security reviews, threat modeling, and risk assessments for new and existing applications and services, with a focus on Azure-based deployments and AI/ML components.
Collaborate with development and operations teams to implement security best practices and remediate identified vulnerabilities.
Utilize Wiz to monitor and improve the security posture of our Azure cloud environments and cloud-native applications.
Develop and maintain secure coding guidelines, security standards, and DevSecOps best practices, including those specific to AI/ML systems.
Provide security expertise and guidance to development teams throughout the software development lifecycle.
Participate in security architecture reviews to ensure security by design for new systems and features, particularly those deployed in Azure and involving AI/ML technologies.
Support vulnerability management efforts, including scanning, analysis, prioritization, and tracking of remediation activities.
Assist in the evaluation and selection of new security technologies and tools to enhance our DevSecOps capabilities.
Stay up-to-date with the latest security threats, vulnerabilities, and industry trends, including advancements in AI/ML security.

Qualifikationen

Qualifications:

4+ years of experience in application security, DevSecOps, or a related field.
Strong understanding of secure software development lifecycle (SSDLC) and integrating security into CI/CD pipelines.
Proven experience with Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), and Infrastructure as Code (IaC) security.
Hands-on experience with security tools such as Coverity (SAST), Jfrog (specifically Xray for SCA and artifact security), BlackDuck (SCA), Polaris (for security orchestration/scanning), and Wiz (for cloud-native security and posture management).
Solid understanding of cloud security principles and best practices, with significant experience in Azure.
Familiarity with common application security vulnerabilities (e.g., OWASP Top 10) and mitigation strategies.
Understanding of security challenges and best practices related to AI/ML models, data, and pipelines (e.g., adversarial attacks, data poisoning, model theft, privacy).
Experience with scripting languages (e.g., Python, PowerShell, Bash) for automation of security tasks.
Excellent problem-solving skills and meticulous attention to detail.
Ability to work independently and collaboratively within a dynamic team environment.
Must possess strong interpersonal skills, including effective communication, constructive feedback, decision-making, and a high sense of responsibility.

Preferred Qualifications:

Relevant security certifications such as CSSLP, Azure Security Engineer Associate, AWS Certified Security - Specialty, or equivalent DevSecOps certifications.
Experience with threat modeling methodologies and tools.
Knowledge of security frameworks and compliance standards (e.g., ISO 27001, NIST, SOC 2, GDPR) as they apply to application and Azure cloud security.
Familiarity with container security (e.g., Docker, Kubernetes) and serverless security within Azure (e.g., Azure Kubernetes Service, Azure Functions).
Experience securing AI/ML development and deployment workflows (MLOps security).
Experience with security incident response processes related to application vulnerabilities.

Why Join Us?

Be part of a purpose-driven organization that is shaping the future of mobility
Work on cutting-edge technologies and global projects
Thrive in a collaborative, diverse, and inclusive environment
Access world-class infrastructure and continuous learning opportunities

Equal Opportunity Statement

At MBRDI, we are committed to diversity and inclusion. We welcome applications from all qualified individuals, regardless of gender, background, or ability.

Benefits

Mitarbeiterrabatte möglich

Gesundheitsmaßnahmen

Mitarbeiterhandy möglich

Essenszulagen

Betriebliche Altersversorgung

Hybrides Arbeiten möglich

Mobilitätsangebote

Mitarbeiter Events

Coaching

Flexible Arbeitszeit möglich

Parkplatz

Betriebsarzt

Gute Anbindung

Barrierefreiheit

Kinderbetreuung

Kantine, Café

KontaktMercedes-Benz Research and Development India Private Limited

Brigade Tech Gardens, Katha No. 119560037 BengaluruDetails zum Standort

MBRDI Recruitment E-Mail: [email protected]

Apply Now

Jobseeker tools

Employer Tools

Browse

Stay Connected