Web Application Security Analyst

Delhi/Mumbai | Experience : 3 to 5 years

Core Responsibilities

  • Primary responsibility would be to perform Vulnerability Assessment & Penetration Testing as well as Source Code Review of Web Applications and articulate reports of the assessment and present findings to various stakeholders as well as support clients in patching the identified vulnerabilities
  • Perform the security assessment on web applications, network devices and servers
  • Write in-house tools, extenders, and automated scripts to enhance the security assessment
  • Perform security code review
  • Write in-house tools, extenders and automated scripts
  • Generate reports as per the requirements
  • Discuss the assessment result and issues with customer during and after the assessment

Experience and Qualifications

  • M.Tech or B.Tech / B.E./BCA in Computer Science or Information Technology
  • Manual and automated security testing of applications
  • Understanding of application technologies and its components
  • Hands-on experience of security code review
  • Experience of assessing Web applications for at-least one platform out of E-commerce or Finance/Banking
  • Knowledge of Ubuntu or Kali Linux O.S.
  • Must know languages: HTML, Javascript, .NET, PHP & JAVA
  • Good knowledge of various frameworks. Eg: spring / codeigniter
  • Proficient in scripting language (Python, Shell script, Ruby, Perl,etc.)
  • Must use Tool - Burp Suite
  • Good understanding of tools like HP Fortify, IBM App Scan, Acunetix etc.
  • Excellent client relationship skills
  • Excellent communication and report writing skills
  • Must be able to lead a team and carry out onsite projects
  • Excellent time management skills
  • CEH & OSCP are preferred