Job Description :
Description:

In this role, you will join Client''s Application Security team and help ensure our products and services are built securely from the ground up by performing core application security practices like threat modeling, secure code reviews, security testing and so on. 


Responsibilities: 


Act as liaison between Security and software development teams 
Assist development teams implementing secure SDLC practices 
Threat model web applications and work with development team throughout the SDLC 
Perform web application vulnerability assessments and penetration tests 
Provide security and compliance requirements for software development projects 


Required Qualifications: 


BS in Computer science or equivalent experience 
Experience in web application security testing (assessment/penetration testing) 
Strong analytical skills and ability to quickly learn new skills 
Good verbal and written communication skills 
Familiarity with OWASP guidelines 
Knowledge of agile and secure SDLC 


Skills Required: 


One or more Certifications (CISSP, GWEB, GPEN, GWAPT, OSWE, OSCE, OSCP) 
Software development or scripting experience (Python, Shell, Java, json, Scrum, Jira, etc) 
Familiarity with network and web application protocols (Http, Https, TCP/IP, SAML 2.0, OAuth 2.0, Rest APIs, etc) 
Knowledge or experience implementing SDLC frameworks like OpenSAMM or BSIMM 
Database knowledge