Lead Engineer - Application Security

Gurgaon, Haryana Bangalore, Karnataka
Permanent
Full-time

27 days ago

United's Digital Technology team is comprised of many talented individuals all working together with cutting-edge technology to build the best airline in the history of aviation. Our team designs, develops and maintains massively scaling technology solutions brought to life with innovative architectures, data analytics, and digital solutions.Job overview and responsibilitiesWe are seeking a skilled Application Security Engineer resource to help us develop solutions to automate the security operation, particularly in the area of security control validation. The ideal candidate will have a strong background in AWS cloud services, proficiency in programming and scripting, and experience with CI/CD pipelines and security best practices.

Work closely with other engineers, analysts, business and systems analysts to define and implement technical solutions to automate security management process
Provide guidance on industry best practices, guidelines and governance for web applications and web sites.
Identify areas for modification in existing programs and subsequently developing these modifications. Test and evaluate new programs.
Write and implement efficient code
Help improving quality assurance procedures
Maintain and upgrade existing systems
Help developing and deploying software tools, processes and metrics

Develop pipeline templates, software components or tools to prevent developers from introducing security vulnerabilitiesThis position is offered on local terms and conditions. Expatriate assignments and sponsorship for employment visas, even on a time-limited visa status, will not be awarded. This position is for
United Airlines Business Services Pvt. Ltd - a wholly owned subsidiary of United Airlines Inc.QualificationsWhat’s needed to succeed (Minimum Qualifications):

Bachelor's degree
Computer Science, IT, Information System, Cybersecurity
5 years of experience in application security or software development
3 years of hands-on experience with AWS core services, including EC2, S3, Lambda, CloudWatch, and DynamoDB
Strong proficiency in multiple programming language (e.g., Python, JavaScript, Java, .NET) and shell scripting (Bash/PowerShell)
Proven track record of delivering high-quality code and applications within project timelines
3+ years of experience implementing and maintaining CI/CD pipelines and configuration management tools in multi-account environments
Familiarity with Harness and/or GitHub Actions
Working knowledge of OWASP Top 10 security risks and their mitigations
Experience with security scanning tools such as Wiz, Veracode, or similar platforms

Demonstrated ability to remediate security vulnerabilities identified by scanning tools

Excellent communication skills, both verbal and written
Collaborative mindset with a history of positive team contributions and relationship building
Must be legally authorized to work in India for any employer without sponsorship
Must be fluent in English (written and spoken)
Successful completion of interview required to meet job qualification
Reliable, punctual attendance is an essential function of the position

What will help you propel from the pack (Preferred Qualifications):

Master's degree
6+ years of experience in application security or software development
4+ years of hands-on experience with AWS core services, including EC2, S3, Lambda, CloudWatch, and DynamoDB
AWS Cloud Practitioner or equivalent

United Airlines

Apply Now