Description
Required Skills
Primary Skill – Manual and automated testing (testing will be done on software)
• Deep understanding of different web application technologies, web protocols (HTTP, HTTPS, etc.), browser technologies, etc.
• In depth domain understanding of application security in terms of Identity and Access Management (IAM), different authentication technologies (passwords, biometrics, OTP, digital certificates & PKI, device authentication, FIDO U2F/Passkeys, etc.
• Proven expertise on different security testing tools (Proxy tools like Fiddler, Black box security testing tools like Burp, Static Security Code analysis tools,
• Deep understanding of different application security vulnerabilities such as OWASP Top 10, SANS Top 25, CWE, attack patterns (CAPEC), etc.
• Bachelor's degree in computer science or equivalent experience.
• Must be self-directed, able to work independently, as well as work in a team-oriented and fast paced environment
Desired Skills
• Working experience on different security technologies and standards like Single Sign On (SSO) using SAML/OpenID, OAuth protocols, etc.
• Good understanding of Cryptographic algorithms and standards like Symmetric/Assymetric crypto techniques, digital signatures, JWS/JWE tokens, Hardware Security Modules (HSMs), etc.
• Understanding of Security vulnerabilities related to Cloud environments is an added advantage.
• Well known Security certifications is an added advantage
• Understanding of Threat Modelling concepts and Secure Development Life Cycle processes.
• Mobile Application Security familiarity is desirable. Qualified candidates should APPLY NOW for immediate consideration
Key Skills
Education
Any Graduate
- Posted On: Today
- Experience: 5+ years of experience
- Openings: 1
- Category: Security Engineer
- Tenure: Full-Time Position