Senior Security Analyst, Information Security Job Vacancy in Share: Pune, Maharashtra – Updated today
Are you looking for a New Job or Looking for better opportunities?
We got a New Job Opening for
Full Details :
Company Name : Share:
Location : Pune, Maharashtra
Position :
Job Description : Job Description
Position Summary:
Security operations team is responsible for ensure that the Confidentiality, Integrity and availability of the organization is always protected. In this role, individual is expected to define the policies, standards and procedures for the protection of data. As an Application Security & Threat Modeling specialist, you will be a key advisor to the in-house development team design and implement application security best practices. You will apply your technical skills to find ways to improve the application security by performing thorough security testing. Work with the stake holders to get the issues resolved. This role will also support periodic compliance activities on the applications, where application risk assessment is required for SOX and other standards.
This position requires:
Participate in and support application security reviews and threat modeling, including static code review and dynamic testing.Own and perform application security vulnerability management & application penetration testing programTrack the identified issues in applications to closureOwn the implementation and finetuning of WAF (Web Application Firewall)Expert level of proficiency with application security scanning tools and foundational concepts of secure development principlesAssist in securing various APIs used by application include performing AppSec testing on themSupport and consult with product and development teams in application securityAssist in the creation of application security programAssist in development of automated security testing to validate that secure coding best practices are being usedFamiliarity with common security libraries, security controls, and common security flawsBasic development or scripting experience and skills.Experience with OWASP, static/dynamic analysis, and common security toolsA basic understanding of network and web related protocols (such as TCP/IP, UDP, HTTP, HTTPS, protocols).Experience working with developers.
Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner.
Qualifications:
7-9 years of progressive experience in one or more of the following: Application security, Threat Modeling, code reviews, exposure to the entire SDLC processBachelor’s degree from an accredited college / university. Management degrees MS, M. Tech or MBA in relevant field would be an added advantage.Preferred Certifications
o Certified Application Security Engineer (CASE)
o Certified Application Security Specialist (CASS)
o GIAC Certified Web Application Defender (GWEB)
o GIAC Web Application Penetration Tester (GWAPT)
Having a background or exposure to But Bounty program will be desirableHaving a CVE ID to your name would be an added advantageExperience in working on Web Application Firewall rules
Work Schedule: 2 PM to 11 PM / 5 PM to 2 AM
This post is listed Under Technology
Disclaimer : Hugeshout works to publish latest job info only and is no where responsible for any errors. Users must Research on their own before joining any company