Role: Application Security
Band: B1
Location: Gurgaon/Bangalore
Shift: 2 PM to 11:30 PM

 Application Security Job Description

? We are looking for Application Security Engineer (3-4 years of exp) with expertise in SAST, DAST, Penetration Testing, Secure Code Review, Secure Design Review. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of service offering.

Duties and Responsibilities

? A strong and thorough understanding of Application Security with a passion to innovate

? Strong knowledge experience with Vulnerability Assessment and Penetration Testing

? Strong knowledge to automate DAST/SAST solutions scanning and reporting

? Performing Manual Secure Code Review and Secure Design Review

? Strong knowledge of OWASP Top 10 web and the ability to effectively communicate methodologies and techniques with development teams.

? Good understanding of Java, Python, C++ etc.

? Hands-on experience of Web Application Scanning Tools (both Open Source and Commercial)

? Knowledge of performing Threat Modeling and Application Design Reviews

? Good understanding of SSDLC and Secure Software Delivery Frameworks

? Provide guidance to development teams for remediating application security vulnerabilities

? Good to have certifications like OSCP/eWAPTX/OSCE/CRTE/eCPTX/CEH/Security+/eJPT or equivalent.

Perform the following functions as individual assignments or as part of a team:

? Responsible for doing Penetration testing, SAST, DAST, Manual Secure Code Review and Secure Design Review

? Make suggestions for security improvements.

? Enhance existing methodology material.

Good to have working experience on:

? Good understanding of Cloud Security Concepts AWS/Azure