Position Overview:
The Security Test Engineer is responsible for assessing and ensuring the security of software systems, applications, and networks. This role involves identifying vulnerabilities, implementing security measures, and collaborating with development teams to enhance the overall security posture of an organization's digital assets.
Key Responsibilities:
1. Security Testing:
• Conduct thorough security assessments, penetration testing, and vulnerability scans on applications, networks, and systems.
• Identify, analyze, and document security vulnerabilities and risks.
2. Test Planning and Execution:
• Develop comprehensive security test plans outlining testing scope, methodologies, and tools.
• Execute security tests in various environments, simulating real-world cyber-attacks.
3. Collaboration:
• Collaborate with development and operations teams to understand application architecture and provide guidance on secure coding practices. Communicate findings and recommendations to technical and non-technical stakeholders.
4. Tool Utilization:
• Utilize security testing tools, scanners, and frameworks to automate and streamline the testing process. Stay currently with industry tools and techniques for identifying and mitigating security threats.
5. Security Standards Compliance:
• Ensure that software and systems comply with industry security standards and regulations.
• Work with compliance teams to address any security-related audit findings.
6. Incident Response:
• Participate in incident response activities, including analyzing and mitigating security incidents and breaches. Contribute to the development and improvement of incident response plans.
7. Security Awareness:
• Promote security awareness within the organization by conducting training sessions and providing educational resources. Stay informed about the latest security threats, vulnerabilities, and industry best practices.
Qualifications:
• Bachelor’s degree in computer science, Information Security, or a related field.
• Proven experience in security testing, vulnerability assessment, or penetration testing.
• Knowledge of security testing tools such as Burp Suite, OWASP ZAP, Nessus, etc.
• Familiarity with secure coding practices and the ability to work closely with development teams.
• Understanding of security frameworks, standards, and compliance requirements (e.g., OWASP, NIST, ISO 27001)
Preferred Skills:
• Certifications such as Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP) or other relevant certifications.
• Experience with cloud security assessments (e.g., AWS, Azure).
• Knowledge of threat modeling and risk assessment methodologies.
• Familiarity with security in DevOps and continuous integration/continuous deployment (CI/CD) pipelines.
Security Testing, Penetration Testing, OWASP
--
You must verify your mobile number to apply to this job.