Job Description :
Job Responsibilities Support asset development, process establishment. Conducting application security assessments (web, mobile, web service, Infra etc. These assessments involve manual testing and analysis as well as the use of automated application vulnerability scanning/testing tools such as Burp Suite Professional and/or code review tools such as IBM AppScan/HP Fortify or CMx. We expect candidate to have experience doing similar assessments, candidate can be trained on any proprietary assessment methodology. Reporting/Dash boarding/Retesting and participation in conference calls with clients to review assessment results and consult with the clients on remediation options. Participating/Driving conference calls with potential clients to scope out newly requested security projects and estimate effort and resource requirement to complete the project etc. Skills Required Mandatory: Strong Application Security experience in DAST, IAST, Code Review, SCA, Vulnerability Assessment, Penetration Testing. Web Service/API security testing using Postman tool. Expert in Application Security vulnerability remediation support in the following programming languages java, java script, C, C++, python, Perl and .Net technologies. Expert in Application Security process establishment. Good experience in False positive analysis and Trainings. Security tool experience - IBM AppScan/Checkmarx/Forfity/, Web Proxy (Burp Suite) Good exposure on penetration testing. Good to have one of the given certifications - OSCP/GPEN/GWAPT/CSSLP etc. Independent global client handling AppSec delivery exposure. Moderate exposure on AppSec technical solutioning, Client presentation. Excellent interpersonal skill.