About FirstsourceFirstsource Solutions Limited, an RP-Sanjiv Goenka Group company (NSE: FSL, BSE: 532809, Reuters: FISO.BO, Bloomberg: FSOL:IN), is a specialized global business process services partner, providing transformational solutions and services spanning the customer lifecycle across Healthcare, Banking and Financial Services, Communications, Media and Technology, Retail, and other diverse industries. With an established presence in the US, the UK, India, Mexico, Australia, South Africa, and the Philippines, we make it happen for our clients, solving their biggest challenges with hyper-focused, domain-centered teams and cutting-edge tech, data, and analytics. Our real-world practitioners work collaboratively to deliver future-focused outcomes.Role OverviewAs the Secure Software Development Practice Lead (AppSec & DevSecOps), this role owns the secure‑by‑design engineering practice. This role will lead the application security and DevSecOps capability end‑to‑end, setting standards (NIST SSDF), building, maintaining and securing CI/CD pipelines, operating AppSec tooling (SAST/SCA/DAST/secrets), and partnering with product teams to prevent vulnerabilities before release. This is a hands‑on enablement role (SFIA Level 4) that mentors developers and establishes guardrails without impacting flow.Requirements (Experience & Skills)Software Engineering Foundation: Strong development experience is essential to understand developer workflows and maintain productivity while introducing security controls.AppSec/DevSecOps Expertise: 5–7 years of specific experience in application security, including familiarity with frameworks like NIST, ISO, or PCI.Communication: Exceptional interpersonal skills with the ability to /"Communicate with Influence/" (ASD level 3/4 equivalent) to stakeholders at all levels.Technical Proficiency: Equivalent to ASD Proficiency Level 3 (Practitioner) in threat analysis and security infrastructure.Education: Bachelor’s degree in Computer Science, Information Security, or a related field.Certifications: Industry certifications (e.g., GIAC, CompTIA, Azure/AWS security) at an intermediate or advanced level are preferred.⚠️ Disclaimer: Firstsource follows a fair, transparent, and merit-based hiring process. We never ask for money at any stage. Beware of fraudulent offers and always verify through our official channels or @ email addresses.
Job Title
Security Engineer (DevSecOps)