Quick Enquiry
Company
About Us
Clients
Resources
Testimonials
Careers
Meet the team
News Room
Products
VulTrac
RegTrac
Services
Cyber Security Testing
Application Security Assessment
Penetration Testing & Vulnerability Assessment
Code Security Review
Secure Configuration Review
Red Team Assessment
Social Engineering Assessment
Cyber Security Advisory & Consulting
Comprehensive Security Assessment
Regulatory Cyber Security Compliance Consulting
Cyber Security GRC Consulting
Operational Security Guidelines
Business Continuity Management Consulting Services
Training
Corporate Training
SecurEyes Cyber Security Academy
Contact Us
Quick Enquiry
Job title:
Senior Information Security Consultant- VAPT
Job type:
Permanant
Required Experience:
7-10 years
Salary:
As per industry
Emp type:
Full-time
Location:
Mumbai & Bangalore
Job Published Date:
2019-15-10
Job ID:
6
Job Description
Should have an overall exposure and understanding of Application and Network Security projects and also GRC
Should have managed comprehensive security projects, that include Application, Network Security and governance aspects
Strong knowledge of the OWASP Top 10, SANS top 25, WASC security Standards and detailed knowledge of common web application attack vectors such as SQL injection, CSRF, XSS, Session Management issues, Insecure Direct Object reference, Click jacking, buffer overflows, etc.
Experience in manual application penetration testing of web-based applications, thick-client applications, mobile applications, web services, API’s etc.
Experience in Source Code Review of applications
Should have performed manual mobile application penetration testing on platforms like Android, IOS, etc – both client and server side applications.
Should have knowledge on Risk Rating Standards like DREAD, CVSS etc.
Experience in automated web application vulnerability scanners (e.g., AppScan, Web inspect, Accunetix, Burp suite Pro, etc) is desirable.
Should have performed Black-Box / Grey Box External Network VA/PT assessments following structured phases
Should have created comprehensive assessment report with details of vulnerabilities identified, categorization of the risks by assessment of potential impact and detailed remediation/recommendation for all the identified risks.
Review Policies and SOPs associated with secure network/infrastructure implementations.
Should have experience in Leading the team and coaching/ mentoring team members on technical/functional/ operational/ aspects and expertise relevant to Application and Network security assessments.
Should be ready to travel within and outside the country
div >
Qualifications
7-10 Years of proven experience in application security and network VA-PT domain with exposure to GRC
Should have excellent client liasoning, customer relationship and project management skills.
Graduate in CS, IT, EC or Info Sec or Cyber Sec or MCA
Proficient in written and oral English communication skills.
Strong organizational, team-work, multi-tasking and time-management skills.
Manage a team during project execution as needed for the smooth execution of the project.
Experience in banking domain will be added advantage.
Provide strategic direction to the team to excel in fast-paced project delivery in challenging projects.
Should be result-oriented and able to deliver within defined deadlines. Should value quality and client-satisfaction at minimum
APPLY NOW
×
Quick Enquiry
Please enter captcha:
Thank you!
Your message has been successfully sent. We will contact you very soon!