Application Security Testing - IVSU - TTL

Job Description

Bachelor s / Master s degree in Information Science or relevant studies Information security (IS) professional qualifications such as CEH, CISSP, Azure Security engineer (AZ-500),OSCP preferred Working experience of minimum two years in Security Testing Working experience in Secure SDLC environment, includes threat modelling at design phase. Familiarity with threat modeling methodologies such as STRIDE or PASTA Expert level understanding and exploitation skills for web application vulnerabilities (OWASP - SQLi, XSS, CSRF, XXE, IDOR, SSRF, etc ) Extensive experience in Commercial and Open Source Tools for Application Security testing (Burpsuite, WebInspect, IBMappscan Microfocus Fortify, OwaspZap etc) Infra Security (nessus/nmap), Mobile (nowsecure/mosbsf/genemotion/android studio) but not limited to the list Experience in manual penetration testing One Programming language C++, Java, python is a must Agile way of working & DevSecOps Cloud security with a special focus on leading cloud services such as AWS, Azure, GCP is a plus Security assessment and requirements management is a plus Proven knowledge of security processes, technologies and architectures, Experience with report writing, reviewing and consulting Stakeholder management skills, especially in a multi-cultural and international environment Strong communication skills both verbally and in writing in English Participated in conferences/bug-bounty/CTF etc. A day in the life of an Infoscion As part of the Infosys consulting team, your primary role would be to actively aid the consulting team in different phases of the project including problem definition, effort estimation, diagnosis, solution generation and design and deployment You will explore the alternatives to the recommended solutions based on research that includes literature surveys, information available in public domains, vendor evaluation information, etc. and build POCs You will create requirement specifications from the business needs, define the to-be-processes and detailed functional designs based on requirements. You will support configuring solution requirements on the products; understand if any issues, diagnose the root-cause of such issues, seek clarifications, and then identify and shortlist solution alternatives You will also contribute to unit-level and organizational initiatives with an objective of providing high quality value adding solutions to customers. If you think you fit right in to help our clients navigate their next in their digital transformation journey, this is the place for you!A day in the life of an Infoscion As part of the Infosys testing team, your primary role would be to anchor testing requirements, develop test strategy, track & monitor project plans, review test plans, test cases and test scripts. You will develop project quality plans, validate defective prevention plans to deliver effective testing solutions for clients. You will ensure right test environment is available and provide necessary review feedback for test data setup to ensure timely commencement of test execution You will validate go live activities such as production verification to ensure that the application runs in the production environment without any issues. In addition, you will mentor the team and provide regular feedback and coaching to help them continually improve their performance If you think you fit right in to help our clients navigate their next in their digital transformation journey, this is the place for you! Primary skills:Application Security->Ethical Hacking(CEH),Application Security->Vulnerability Assessment/Penetration Testing,Security testing->Cloud Security,Security testing->Penetration testing,Security testing->Security testing,Security testing->Security testing->Web Application Security testing,Security testing->Vulnerability testing Possess end-to-end knowledge and experience in testing Extensive experience in test planning/ test strategy, test estimates Excellent communication and client handling skills Experience in one or more scripting languages and automation tools Analytical, Client interfacing and stakeholder management skills Knowledge of SDLC and agile methodologies Project and Team Management,

Keyskills :
strong communication skillsapplication security testingtest datatest cases