Hyderabad Jobs |
Banglore Jobs |
Chennai Jobs |
Delhi Jobs |
Ahmedabad Jobs |
Mumbai Jobs |
Pune Jobs |
Vijayawada Jobs |
Gurgaon Jobs |
Noida Jobs |
Hyderabad Jobs |
Banglore Jobs |
Chennai Jobs |
Delhi Jobs |
Ahmedabad Jobs |
Mumbai Jobs |
Pune Jobs |
Vijayawada Jobs |
Gurgaon Jobs |
Noida Jobs |
Oil & Gas Jobs |
Banking Jobs |
Construction Jobs |
Top Management Jobs |
IT - Software Jobs |
Medical Healthcare Jobs |
Purchase / Logistics Jobs |
Sales |
Ajax Jobs |
Designing Jobs |
ASP .NET Jobs |
Java Jobs |
MySQL Jobs |
Sap hr Jobs |
Software Testing Jobs |
Html Jobs |
Job Location | Pune |
Education | Not Mentioned |
Salary | Not Disclosed |
Industry | IT - Hardware / Networking |
Functional Area | General / Other Software |
EmploymentType | Full-time |
DescriptionResponsibilitiesIn this position, you will primarily be researching, developing, new signatures, fine tuning existing signatures and payloads to detect vulnerabilities and CVEs with zero false positives for the Qualys Web Application Security product. Outstanding problem solving and troubleshooting skills are a must, as solutions to many problems might not be obvious.Required Skills:* 3+ years of industry experience in web application security* Create exploits, proof-of-concept for web application vulnerabilities* Knowledge of HTTP protocol (Requests, responses, Cookies etc.)* Understanding and hands on exposure to web application vulnerabilities(XSS, SQLI, SSRF, XXE, CSRF, etc.) , OWASP top 10* Scripting experience using Python, or Bash* Hands on experience in Node.js, Java, PHP etc* Exposure to DAST/BlackBox tools* Web application security scanning tools like BURP/ZAP, SQLMap, CURL* Experience with network analysis tools, analysis of packet captures.* Proficient with regular expressions.* System administrator experience on Windows or Unix platforms. * Strong analytical and problem solving skills* Strong attention to details* Passion for web security* Team player* Ability to work independently and self-learnerGood to have*Experience with client-side frameworks like React, Angular, JQuery, Vue *Understanding of JAVA programming *Experience with selenium, postman scripting*Experience with MetaSploit/Nessus exploits (especially HTTP related)*Experience with web application firewalls (WAF) rules, ModSecurity*Exposure to WEB 2.0, XML/XPATH, JSON, Swagger *Database/SQL knowledge*Experienced in the use of various scanners and open source security tools.*Published web application related CVEs, and research*Experience in developing security related tools/programs.NMAP, experience/knowledge of NASL or NSE scripts, Certifications like CEH or OSCPEEO Employer/Vet/Disabled,
Keyskills :
pythonproblem solvingjavacsrfopen sourcesystem administrationtroubleshooting skillsweb applicationnetwork analysisjsonunixcehweb application securityphpnseapplication securityowaspweb 20