Vapt Engineer

Job description

Preferred candidate profile :

Notice period : Looking for immediate joiners only.

• Strong understanding of IT security standards and frameworks (OWASP, NIST, CIS)
• Strong understanding of security risks in networks and application platforms
• Strong understanding of network security, infrastructure security and application security
• Strong understanding of OSI, TCP / IP model and network basics
• Demonstrate technical penetration testing skills on IT infrastructure, web applications, mobile platforms and Red teaming
• Strong technical skills : Information security, network security, Windows security, UNIX / Linux security, web and mobile application security, Cloud platforms
• Broad knowledge of security technologies for applications, databases, networks, servers, and desktops
• Solid technical skills in both information security architecture and penetration testing and ability to assess testing tools and deploy the right ones.
• Scripting and programming experience is beneficial
• Ability to perform manual penetration testing
• Experience in Application Security Testing (Web, Mobile & ERP [SAP]), or related functions Vulnerability Assessment, Penetration testing
• Perform penetration testing of various thick client software, web applications, and communications infrastructure to assist in hardening the cybersecurity posture against malicious actor.
• Good Understanding of OWASP top 10 and mitigation techniques
• Experience in performing web application security assessments using hands on techniques for identifying SQL injections, XSS, Security Misconfiguration, CSRF, authentication / authorization issues
• Database testing : MySQL, Oracle, NoSQL
• Understanding of cyber security management, cyber analytics, security intelligence platforms and threat intelligence frameworks
• Writing business proposals and response to client RFP / RFIs
• Identifying business opportunities and lead delivery and program management for large cyber security programs
• Delivery team and client relationship management.
• Preferred Certifications : CEH, ECSA, OSCP, CISSP, CCSK, OCSE, CCSP, AWS Security

Skills Required

Ceh, Web Application Security Testing, Code Review, Ethical Hacking, Penetration Testing, Owasp, SAST, Oscp, Vapt, Application Security Testing, Source Code Review, Mobile Application Security, DAST