Associate information security consultantPosted: Feb. 3, 2022, 10:33 a.m. - Full Time - Navi mumbai
Job Description: • Perform and Report Application audits, Vulnerability Assessments/Penetration testing for IT infrastructure including network devices, operating systems, Databases, applications, etc. • Conducting application security testing ( manual + automated) , source code review, and providing the recommendations toward the mitigation of vulnerabilities. Primary skill should be web and mobile application security testing. • Black/Grey box testing on Web ,Mobile , API and Thick client applications • Develop scripts, framework and custom codes to automate scans using open source tools. • Understanding of TCP/IP protocol suite, network security concepts and devices • Ability to manage Audit assignments, meet deadlines and manage stakeholder expectations. • Ability to interact with Senior Bureaucrats /Client department is added advantage.
Desired Profile: • 0 -1 years, relevant experience in Vulnerability assessment /penetration testing of Network /Application Security testing • BE/B.Tech/MCA, M.Tech/M.E Degree preferably in Computer Science/Engineering. • CEH/Security+/ECSA/OSCP/OSCE/OSWP/OSWE/GPEN/GXPN or equivalent penetration testing certifications(preferred). • Experience in configuration reviews and testing of APIs, web services, SCADA systems etc will be added advantage • Recipient of bug bounty or Hall of Fame will be added advantage • Should have hands on experience with toolslike Acunetix, Burpsuite, Metasploit, Nessus etc. • Ability to manage Audit assignments, meet deadlines and manage stakeholder expectations. • Knowledge of Programming language or Database is must • Knowledge of software design and development, software and network architecture, protocols, and standards.