Security test lead

Posted: Dec. 7, 2023, 7:45 a.m. - Full Time - India

The Non-Functional Testing team at Yogiti is expanding and the current Security Testing Analyst role requires below:

Only People looking for Full Time Employment may apply Salary is not a constraint for the right candidate.

Job Skills Description

•Play a Lead role in delivery of Security Penetration Testing and Vulnerability management

•Conduct security assessments by Scanning Application and Networks, review and perform Pentest for further exploitation.

•Conduct Web Application SAST, DAST, Mobile application Security testing and API security testing.

•Establish Vulnerability Management framework and process including Vulnerability assessment, treatment, acceptance/exception

•Ensure the coverage and track new assets & applications which are going live and VA/PT, Security Configuration Assessment are conducted before going live and periodically after going live.

•Manage VAPT and Secure Configuration Management process

•Bachelor’s in Computer Science, Information Technology, Engineering, Business Administration, or a related field

•Min 8 years of Hands-on Experience on Tenable Nessus- SC and network PT tools.

•Good understanding of OWSAP top 10 ,CIS, OSSTMM & NIST.

•Knowledge of languages like Java, Ruby, Python etc.

•Experience on security PT on Mobile-based Applications using MOBSF. Well versed with API testing using POSTMAN and BurpSuite

•Well versed with dynamic and static application vulnerability scanners like HP WebInspect, IBM AppScan, HP Fortify. Manual PT using Metasploit and relevant KALi frameworks.

•Any relevant IT or security certifications including CISSP, OSCP ,CEH or SANS certs are expected

•Security Testing methodology and best practices