Security Engineer, Gurgaon
PRIMARY RESPONSIBILITIES:
· Perform application, infrastructure and network penetration tests and review source code for security.
· Document vulnerabilities and provide recommendations/countermeasures.
· Provide consulting services as required to Firm staff on security risks security related issues.
· Keep up with industry trends in security space.
· Liaise with Application Development teams and work towards improving
the security posture of applications.
· Be comfortable to work in 1 to 9 PM IST shift.
MANDATORY SKILLS:
· Strong technical knowledge in performing manual/automated web application security assessments using open-source and commercial security tools (ex. IBM AppScan, Burp Suite, vulnerability scanners, local proxies etc) across web technologies and various operating systems.
· Ability to identify inherent vulnerabilities within Mobile applications (iOS, Android, Blackberry, web services) and recommend countermeasures.
· Ability to develop appropriate exploit code and launch successful exploits to obtain access to target systems and data
· Ability to review source code for different languages/Frameworks (HTML, JavaScript, Ajax, Java, .NET, Ruby on Rails) and advice teams on secure coding guidelines.
DESIRED SKILLS:
· Proficient in Unix/Linux and Windows operating systems.
· Knowledge of Network penetration testing.
· Strong knowledge of industry best practices and technologies to address common vulnerabilities.
· Excellent communication, analytical, problem solving and troubleshooting skills.
· Strong team-oriented interpersonal and collaboration skills.
· Self-starter, proactive in nature
BACKGROUND AND TRAINING:
· Bachelor's degree in Computer Science, Engineering or related field.
· 3-4 years of relevant industry experience.
· Prior experience of PCI based security assessments is a plus.
· CISSP / CEH certification is a plus.
Regards
Rekha Senthil
bsrekhabs@gmail.com
9900114144
No comments:
Post a Comment