Hyderabad Jobs |
Banglore Jobs |
Chennai Jobs |
Delhi Jobs |
Ahmedabad Jobs |
Mumbai Jobs |
Pune Jobs |
Vijayawada Jobs |
Gurgaon Jobs |
Noida Jobs |
Hyderabad Jobs |
Banglore Jobs |
Chennai Jobs |
Delhi Jobs |
Ahmedabad Jobs |
Mumbai Jobs |
Pune Jobs |
Vijayawada Jobs |
Gurgaon Jobs |
Noida Jobs |
Oil & Gas Jobs |
Banking Jobs |
Construction Jobs |
Top Management Jobs |
IT - Software Jobs |
Medical Healthcare Jobs |
Purchase / Logistics Jobs |
Sales |
Ajax Jobs |
Designing Jobs |
ASP .NET Jobs |
Java Jobs |
MySQL Jobs |
Sap hr Jobs |
Software Testing Jobs |
Html Jobs |
Job Location | Bangalore |
Education | Not Mentioned |
Salary | Not Disclosed |
Industry | Recruitment Services |
Functional Area | General / Other SoftwareIT Operations / EDP / MIS |
EmploymentType | Full-time |
Skills : OWASP, SANS top 25, WASC security Standards, SQL injection, CSRF, XSS, .NET, PHP, Java, XML, SAML, SOA, SOAP, web services, DREAD, CVSSDescription :Mandatory working knowledge of OSCPStrong knowledge of the OWASP, SANS top 25, WASC security Standards and detailedKnowledge of common Web application attack vectors such as SQL injection,CSRF, XSS, Session Management issues, Direct Object reference, Click jacking, bufferoverflows, etc.Experience in manual application penetration testing of thick client applications, mobileapplications, web services, API s etc.Thorough understanding of common web technologies like .NET, PHP, Java, XML, SAML,SOA, SOAP, web services etc and protocols including HTTP(S),DNS,FTP,SSH etc.Had performed manual mobile application penetration testing on platforms like Android, IOSetc.Should have knowledge on Risk Rating Standards like DREAD, CVSS etc.Good understanding of web application architecture and Secure development life cycle(SDLC).Experience in threat modelling and risk analysis.Experience in automated web application vulnerability scanners (e.g., AppScan, Webinspect,Accunetix, Burpsuite Pro, etc) is desirable.Should be ready to travel within and outside the country.Preparing audit reports and findings tracker sheets for each application in the providedtemplate.Communicate with customer teams to explain and demonstrate vulnerabilities toapplication/system owners, and assist with the mitigation of the identified vulnerabilities.Researching the latest security best practices, staying abreast of new threats andvulnerabilities and helping to disseminate this information within the group as well as theorganization.Skills required/Expertise:3-4 years of proven experience in application security domain, especially OSCPProficient in written and oral English communication skills.Expertise in web application security testing.Expertise in mobile application security testing.Strong organizational, team-work, multi-tasking and time-management skills.Experience in banking domain will be added advantage.Experience in VA/PT of networks, servers, devices will be added advantageExperience in static and dynamic secure code review will be added advantage,
Keyskills :
penetrationtesting codereview webservices ts sqlinjection webapplication timemanagement uditrep