Skill Sets Required: Application Security[Web and Mobile] VAPT, Cloud security, Security Automation and Source code review

Roles & Responsibilities

• Assess applications and products for security vulnerabilities, design flaws and interact with project teams to understand the security requirements
• Performing Web application security testing, Mobile(Android/iOS) application security testing and Secure code review
• Conduct Product Requirement reviews, Threat modelling, Static Code Reviews and cloud security assessments
• Evaluate security vulnerabilities, think out of the box in building attack scenarios and prioritise remediation efforts
• Evaluate and improve application security tools and processes
• Research latest security best practices, staying current on new vulnerabilities and threats

Skills And Expertise: * Proficient in OWASP Top 10/SANS TOP 25, PRD Review, Threat Modelling, Red Teaming, Source Code review * Inclination towards learning multiple areas of security and building competency to deliver a wide spectrum of security like Cloud security, devSecOps, Data security etc. * Ability to understand tech deeply and work with respective tech teams to define functional security design and best practices framework for security * A sharp focus on automating repeatable tasks and reducing operational overheads * Excellent communication skills to proactively communicate with stakeholders to keep them up to speed on any issues. * Contributions to open source projects, GSoC etc is a plus * Certifications are not mandatory but skills are.