Cyber Security Specialist
Aqilea · Bengaluru, Karnataka, India
- On site
- Full-time
- ₹1,500,000 / year
- Bengaluru, Karnataka, India
Job highlights
- Lead software security initiatives in a retail organization.
- Build secure development practices and tools.
- Integrate security into CI/CD pipelines.
- Ensure compliance with industry security standards.
- Drive adoption of secure AI development practices.
About the role
About Aqilea India
Aqilea is an IT and engineering consulting partner that helps companies get more out of their technology and operations. With teams in Stockholm and Bangalore, we work closely with our clients to build solutions that fit their needs - from software development, AI and infrastructure engineering to industrial automation and embedded systems.
We combine strong technical expertise with a practical, business-focused approach to help organizations modernize, improve security, and scale with confidence. Above all, we focus on long-term partnerships built on trust, quality, and real results.
With us, you have great opportunities to take real steps in your career and the opportunity to take great responsibility.
About The Role
Company: Aqilea India
Role: Cyber Security Specialist
Experience: 7 Yrs – 10 Yrs
Location: Bangalore (Hybrid)
Job Summary
We are looking for a Cyber Security Specialist professional to lead and strengthen Software Security across a retail organization. This role focuses on building secure software development practices, enabling development teams with the right tools and guidance, and ensuring security is built into applications from design to deployment.
You will work as part of a central Software Security team, defining standards, security patterns, and automated guardrails that help teams deliver software safely and quickly.
Key Responsibilities
Software Security & Architecture
- Define and improve secure software development practices (SSDLC) across teams.
- Provide secure architecture guidance for web, mobile, APIs, microservices, and cloud applications.
- Perform threat modeling and help teams identify and reduce security risks early.
DevSecOps & Tooling
- Manage and improve security tools such as: SAST, DAST, SCA (dependency scanning), Secrets scanning, container and IaC security.
- Integrate security controls into CI/CD pipelines using GitHub and automation tools.
- Create reusable and secure CI/CD templates (paved roads) for development teams.
Secure Coding & Standards
- Ensure applications follow industry standards like OWASP, NIST SSDF, and ISO 27034.
- Maintain secure design patterns and coding guidelines.
- Help teams fix security issues and reduce false positives efficiently.
AI & Modern Development Security
- Define safe ways to use AI coding tools (e.g., GitHub Copilot, LLMs) in development.
- Ensure AI-generated code is secure, compliant, and reviewed properly.
- Guide secure design of AI-enabled features (input validation, prompt security, logging, monitoring).
Metrics & Continuous Improvement
- Track security metrics such as scan coverage, time to fix issues, and adoption of secure pipelines.
- Continuously improve developer experience while reducing security risks.
Leadership & Collaboration (for Lead role)
- Own the software security roadmap and capability maturity.
- Work closely with engineering, platform, and leadership teams.
- Mentor engineers and promote a strong security culture.
Required Skills & Experience
- 7+ years of experience in application security / software security.
- Strong understanding of secure software development and threat modeling.
- Hands-on experience with SAST, DAST, SCA, and CI/CD security.
- Experience with GitHub security features (GHAS, Dependabot, code scanning).
- Knowledge of OWASP Top 10, SAMM, ASVS, and NIST SSDF.
- Lead the Software Security capability strategy and maturity roadmap.
- Lead stakeholder engagement and represent software security in architecture and governance forums.
- Lead adoption of secure development practices, including AI‑assisted development, across engineering.
- Aligns the capability to industry standards such as ISO/IEC 27034, NIST SSDF, and OWASP.
Good to Have
- Assistants/platforms: GitHub Copilot, OpenAI Codex, Anthropic Claude / Claude Code, Google Gemini, or similar.
- SAST/DAST/SCA platforms such as SonarQube, Mend, Black Duck, Dependabot.
- IaC/container security: Trivy, Checkov, tfsec, kube-bench, OPA/Gatekeeper/Conftest.
- Knowledge of container and IaC security tools (Trivy, Checkov, tfsec, etc.).
- Programming or scripting experience (Java, Python, JavaScript, Go, etc.).
- Cloud and platform exposure (Azure/GCP), GitHub Actions/Azure DevOps and policy-as-code (e.g., Rego/OPA).
Who Should Apply
Professionals who enjoy enabling developers rather than blocking them.
Security engineers who want to build scalable, automated security solutions.
Leaders who can balance security risk with developer productivity.
Start: Immediate to 15 Days
Location: Bangalore (Hybrid)
Key skills/competency
- Cyber Security Specialist
- Software Security
- Application Security
- Secure Software Development
- Threat Modeling
- DevSecOps
- SAST, DAST, SCA
- CI/CD Security
- OWASP
- NIST SSDF
Skills & topics
- Cyber Security Specialist
- Application Security
- Software Security
- Secure Development
- Threat Modeling
- DevSecOps
- SAST
- DAST
- SCA
- CI/CD Security
- OWASP
- NIST
- AI Security
- Cloud Security
- Bangalore
How to get hired
- Tailor your resume: Highlight application security, threat modeling, and DevSecOps experience.
- Showcase tool proficiency: Emphasize experience with SAST, DAST, SCA, and GitHub security features.
- Demonstrate leadership: Provide examples of defining security roadmaps and mentoring teams.
- Align with values: Express your passion for enabling developers and balancing security with productivity.
- Prepare for technical questions: Be ready to discuss secure coding practices and risk mitigation.
Technical preparation
Behavioral questions
Frequently asked questions
- What is the work arrangement for the Cyber Security Specialist role at Aqilea India?
- The Cyber Security Specialist role at Aqilea India is a hybrid position based in Bangalore. This means you will have a blend of remote work and on-site presence at the office.
- What kind of experience is required for the Cyber Security Specialist role?
- Aqilea India is seeking candidates with 7 to 10 years of experience in application security or software security, with a strong understanding of secure development and threat modeling.
- What security tools and standards are important for this Cyber Security Specialist position?
- Key tools include SAST, DAST, SCA, and GitHub security features. Important standards to be familiar with are OWASP, NIST SSDF, and ISO 27034.
- How does Aqilea India approach AI in its development security?
- Aqilea India focuses on defining safe ways to use AI coding tools, ensuring AI-generated code is secure and compliant, and guiding the secure design of AI-enabled features.
- What are the key responsibilities of a Cyber Security Specialist at Aqilea?
- Key responsibilities include defining secure development practices, providing architecture guidance, managing security tools, integrating security into CI/CD, and ensuring adherence to industry standards.
- What makes someone a good fit for the Cyber Security Specialist role at Aqilea India?
- Ideal candidates enjoy enabling developers, want to build scalable security solutions, and can balance security risks with developer productivity, as highlighted in the 'Who Should Apply' section.
- What is the career growth potential at Aqilea?
- Aqilea emphasizes great opportunities for career advancement and taking on significant responsibility within the company.