Lead security analyst and sr security analyst - vapt-cloud security-devsecops

Posted: Feb. 4, 2022, 11:54 a.m. - Full Time - Benguluru

Plan and create penetration methods, scripts and tests. Carry out remote testing of a client’s network or onsite testing of their infrastructure to expose weaknesses in security. Simulate security breaches to test a system’s relative security. Expanding towards the DevSecOps and cloud security model. Create reports and recommendations from your findings, including the security issues uncovered and level of risk. Advise on methods to fix or lower security risks to systems. Present your findings, risks and conclusions to management and other relevant parties. Consider the impact your ‘attack’ will have on the business and its users. Understand how the flaws that you identify could affect a business, or business function, if they’re not fixed. Good communication skills. Internet, intranet, web application penetration tests. Basic understanding of HTTP Protocol, HTTP Methods, Request/Response Headers, Cookies, TCP/IP connections over HTTP etc. Basic understanding of HTML/JavaScript. Good Understanding of security vulnerabilities. OWASP Top 10 vulnerabilities. Must have knowledge of pen testing tools such as NMAP, BurpSuite, netsparker,webinspect etc. Assessment of scanner results and intelligently identifying false positives from the scan results.

Candidate will get the opportunity to Work with product based company..