Job Role :: Application Security Engineer
Application Security Engineer has the responsibility of completing a thorough risk assessment, identifying vulnerabilities within company applications and container based infrastructure. The Application Security Engineer may use manual and automated testing tools to assess applications for possible exploitation and is responsible to document and assist with remediating security threats and technical faults.
Please find the job description below :
Location : Bangalore
Experience : 8 13 years
Notice Period : Immediate 60 days
Job Requirements :
Expertise in web application penetration testing and web services (API) penetration testing, Integration of application authentication, encryption, authorization, and access control
Provide mitigation strategies for applications from secure coding perspective
Experience on programming language Java or Dot Net
Experienced in vulnerability Assessments using Automated Scanners such as Nessus Qualys and Manual Security Testing Kali Linux Metasploit and other infrastructure security testing tools
Experience with application architecture reviews, Threat modeling, Static Code Reviews and cloud security assessments
Ability to interact with project teams to understand the security requirements and come up with solutions
Knowledge on OWASP Top 10 and SANS Top 25 and the ability to map the vulnerabilities identified against the standards
Familiarity with web application vulnerability scanners (Acunetix HP Web Inspect IBM AppScan, etc and with source code analysis tools (Fortify Checkmarx Vera code Klocworks)
Experience in using manual VAPT tools like Burp suite ZAP CSRF Tester etc.
Good client interaction and presentation skills
Experience in Security Pre Sales and the ability to handle a team would be a plus
Should be able to train team members in appsec activities.
If interested, please share your updated resume or feel free to refer your friends or colleagues who might be looking for a similar opportunity.