Deloitte | India Offices of the US

USI T&I/IT Security – SSDLC – Application Assessment – Analyst or Senior Analyst

Work you’ll do

Responsibilities

As a key member of the IT Security team, you will lead and execute advanced application security assessments across the software development lifecycle (SDLC). Leveraging tools such as Snyk, StackHawk, and other industry-standard platforms, you will identify vulnerabilities through static and dynamic analysis, threat modeling, and penetration testing. You will collaborate closely with development and DevOps teams to integrate security into CI/CD pipelines, provide expert remediation guidance, and ensure secure coding practices are embedded from design to deployment. Your role will be critical in proactively identifying risks, enhancing application security posture, and supporting the organization’s secure development objectives.

Key Responsibilities:

Application Security Assessments

• Lead in-depth security assessments across all phases of the Software Development Life Cycle (SDLC), including design, development, testing, and deployment stages.

• Utilize advanced tools such as Snyk, StackHawk, and other industry-standard platforms to perform static (SAST), dynamic (DAST), and software composition analysis (SCA) to identify vulnerabilities in source code, dependencies, and runtime environments.

• Conduct threat modeling exercises to proactively identify potential attack vectors and design flaws in application architectures.

• Provide detailed, risk-based remediation guidance and collaborate with development teams to ensure timely resolution of identified issues.

Collaboration & Secure Development Enablement

• Partner with engineering, DevOps, and architecture teams to embed security into CI/CD pipelines and promote DevSecOps practices.

• Deliver expert-level security consultation and training to developers and project stakeholders, fostering a security-first mindset.

• Participate in design and code reviews to ensure secure coding practices and adherence to organizational security standards.

Reporting & Governance

• Develop comprehensive security assessment reports, clearly articulating findings, risk severity, and prioritized remediation strategies.

• Maintain and continuously improve documentation of assessment methodologies, tool configurations, and security workflows.

• Track vulnerability trends, remediation progress, and key metrics to support compliance and risk reporting to leadership.

Skills:

• Deep understanding of secure software development practices and the Secure SDLC.

• Hands-on experience with application security tools such as Snyk, StackHawk, Burp Suite, OWASP ZAP, or similar.

• Proficiency in static and dynamic code analysis, threat modeling, and vulnerability triage.

• Familiarity with modern development environments, CI/CD pipelines, and containerized applications (e.g., Docker, Kubernetes).

• Strong knowledge of OWASP Top 10, CWE, CVSS, and other vulnerability classification frameworks.

• Excellent analytical and problem-solving skills with a keen eye for identifying subtle security flaws.

• Effective communication skills with the ability to translate complex security issues into actionable insights for both technical and non-technical audiences.

• Experience working in Agile or DevOps environments and integrating security into fast-paced development cycles.

Education: Bachelor’s Degree or equivalent

Experience: 1 to 2.5 years for Analyst and 4 to 5 years for Senior Analyst

Work Location: Hyderabad

Shift Timings: 2 PM to 11 PM IST.

The Team

At Deloitte, we’re all about collaboration. And nowhere is this more apparent than among our 2,000-strong internal services team. With our combined specialist skills, we provide all the essential support and advice our client-facing colleagues need, right across the firm. This enables them to focus all of their efforts on delivering the best service possible to their clients. Covering seven distinct areas; Human Resources, Clients & Industries, Finance & Legal, Practice Support Services, Quality & Risk Services, IT Services, and Workplace Services & Real Estate, together we live, breathe and deliver the Deloitte experience.

How you’ll grow

At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in exactly the same way. So, we provide a range of resources including live classrooms, team- based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India

Benefits

At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.

Deloitte’s culture

Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.

Corporate citizenship

Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world.