Application security consultant

Posted: Jan. 11, 2022, 8:09 a.m. - Full Time - Navi mumbai

Job Description:-

Conduct Vulnerability Assessments, Penetration Testing, Application Security Assessments, Device Hardening Reviews, Log Review and Reporting.
Design and Deploy detection/prevention policies on Web Application Firewall
Explain and demonstrate vulnerabilities to application/system owners, and assist with the mitigation of the identified vulnerabilities.
Proactively Identify risk, vulnerabilities for products/application, report generations. Lead and participate in performing security design reviews application architecture.
Work with application development teams on improving security in the Software Development Life Cycle (SDLC).
Support response teams and assist with investigations during security incidents.
Conduct and compile findings on new vulnerabilities, new tools for departmental use.
Knowledge of Web, App Server & DB Servers , OS Servers IT system, networking concepts, TCP/IP and at-least one Operating System (Windows/Unix)
Expertise in automated and manual VAPT tools such as Burp Suite, SQL Map, SSL Scan, Echo Mirage, HP Web Inspect, Acunetix, IBM AppScan, Nessus, Kali Linux/ BackTarck, MetaSploit, CSRF Tester etc.
Conducting security assessments for Android & iOS mobile applications.
Knowledge on security standards and industry best practices including OWASP & NIST.