5–8 years of IT experience.
Hands on experience in Security code review of Java, C/C# applications.
Should be well versed with static and dynamic security testing (SAST and DAST).
Experience in Dynamic security testing on Web application, API’s based on OWASP standards.
Experience with Static vulnerability scanners - such as Checkmarx / HCL Appscan source / Fortinet.
Should be able to review results from scanners and conduct effective False positive analysis.
Should be good in providing suggestions for security fixes to developers.
Should have sound understanding of CWE/SANS TOP 25.
Preferred hands-on experience in Java, JavaScript, PL/SQL development.
Great to have experience in PCI, NIST guidelines including PII, cloud security.
Should have good aptitude to learn and stay current with latest tools and techniques.
Good verbal & written communication skills.
Skills
Static Application Security Testing (SAST)
Dynamic Application Security Testing (DAST)
Web application Vulnerability analysis and Penetration Testing.
--
You must verify your mobile number to apply to this job.