Web Application and Mobile Applications security testing

Job Summary

Educational Qualification: BE/BTech/MCA Experience: 6 to 9 years JD Details Required Skills ¿ Deep knowledge of web Application and mobile applications security testing ¿ Suggest mitigation for identified vulnerabilities ¿ SOC incidents and threat analysis ¿ A clear conceptual understanding of the SDLC ¿ Strong knowledge on automated scanning using HP Fortify, Burp suite or similar tools ¿ Strong knowledge on network penetration testing. ¿ Security knowledge capturing and consolidation ¿ Collaboration on product conceptualization for security by design ¿ Knowledge on web appsec, ethical hacking, DFRA, CSR ¿ Experience in understanding false positive from the Source code scans ¿ Led at least one CSR (Compressive security review) ¿ Knowledge static application security testing (SAST), dynamic application security testing (DAST), and open source security (OSS) ¿ Strong understanding of OWASP top 10. ¿ Experience in WAF logs analysis ¿ Rapid decision making to prevent delayed releases due to security issues ¿ To coordinate with various stakeholders for completion of Audit points observed by internal and external auditor. 8. Make sure all CERTS in, RBI and various security advisories are checked and recommended action taken on the respective platforms in the application. ¿ Outside the box thinking to anticipate possible threats Desirable Skills ¿ Working knowledge of web and mobile application security ¿ Extensive experience in Vulnerability Assessment and Penetration testing, Web Application security ¿ Knowledge on kali linux would be an added advantage ¿ Knowledge on conducting Security Audits ¿ Good knowledge on Threat modeling, cryptography, and common application vulnerabilities ¿ Certificate in Certified Application Security Engineer (CASE), Certified Ethical Hacker (Latest CEH)