Security analyst

Posted: Dec. 12, 2022, 4:54 a.m. - Full Time - Mumbai

● Relevant experience across security testing two or more of the software development lifecycle (Secure Code review (manual/automated), security design and architecture, Security testing (static and dynamic), hands on experience in performing vulnerability assessments and penetration testing) ● Working knowledge of application security tools (OWASP ZAP, GitHub Dependabot, BurpSuite, Dome 9, Fortify, Checkmarx, Black Duck etc.) ● Extensive experience on securing and managing with various flavours of Linux OS (CentOS, Ubuntu) ● Candidates should be familiar with waterfall and agile development processes and have experience integrating secure development practices into both models. ● Basic knowledge of standards, frameworks and regulations (SOC2, ISO 27000 Series, NIST, GDPR, Privacy Shield) and driving compliance. ● Implementation and monitoring of application information Security controls (Standard and client specific). ● Have demonstrated ability in documenting, tracking and managing security controls across a diverse technology platform (Security Incident Monitoring and Management) ● Deep passion and appreciation for evolving security technology and methodology ● Good learning ability to comprehend evolving security risks and threat landscapes and adapt security practices to suit the depth and breadth of technology platform(s) ● Good written and oral communication skills to enable effective coordination and implementation across the organisation and deliver security awareness trainings Education/Qualifications: BE / BTech / MBA / MCA