Job Title : Information Security Consultant

Job ID : 4751769417

Posted on : 08/08/2018

Designation : Information Security Consultant

Experience : 3 - 4 years

Location : Bangalore

Salary : negotiable

Client Name : Our Client

Education : Bachelors / Masters

Skills : OWASP, SANS top 25, WASC security Standards, SQL injection, CSRF, XSS, .NET, PHP, Java, XML, SAML, SOA, SOAP, web services, DREAD, CVSS

Priority : High

Description :

Job Title: Information Security Consultant

Job Location:  Bangalore / KSA

Relevant Experience: 3 to 4 years



Job Description:

Mandatory working knowledge of OSCP
Strong knowledge of the OWASP, SANS top 25, WASC security Standards and detailed 
        Knowledge of common Web application attack vectors such as SQL injection, 
        CSRF, XSS, Session Management issues, Direct Object reference, Click jacking, buffer 
        overflows, etc.
Experience in manual application penetration testing of thick client applications, mobile 
        applications, web services, API’s etc.
Thorough understanding of common web technologies like .NET, PHP, Java, XML, SAML, 
        SOA, SOAP, web services etc and protocols including HTTP(S),DNS,FTP,SSH etc.
Had performed manual mobile application penetration testing on platforms like Android, IOS 
        etc.
Should have knowledge on Risk Rating Standards like DREAD, CVSS etc.
Good understanding of web application architecture and Secure development life cycle(SDLC).
Experience in threat modelling and risk analysis.
Experience in automated web application vulnerability scanners (e.g., AppScan, Web 
        inspect,Accunetix, Burpsuite Pro, etc) is desirable.
Should be ready to travel within and outside the country.
Preparing audit reports and findings tracker sheets for each application in the provided 
        template.
Communicate with customer teams to explain and demonstrate vulnerabilities to 
        application/system owners, and assist with the mitigation of the identified  vulnerabilities.
Researching the latest security best practices, staying abreast of new threats and 
        vulnerabilities and helping to disseminate this information within the group as well as the 
        organization.
 


Skills required/Expertise:

3-4 years of proven experience in application security domain, especially OSCP
Proficient in written and oral English communication skills.
Expertise in web application security testing.
Expertise in mobile application security testing.
Strong organizational, team-work, multi-tasking and time-management skills.
Experience in banking domain will be added advantage.
Experience in VA/PT of networks, servers, devices will be added advantage
Experience in static and dynamic secure code review will be added advantage

Apply Now


Permanent Staffing

Permanent staffing assignments refers to those Jobs when you as a company look to hire people on your payroll on a permanent basis...

Read More

Contract Staffing

Although Professional Services in Human Contracting is a fairly new concept in India, The PS market is fast maturing and catching up with the changing industry...

Read More

RPO

Recruitment Process Outsourcing (RPO) is a form of business process outsourcing (BPO) where an employer transfers all or part of its recruitment...

Read More

Pentagon Consultancy Services © 2014 | All Rights Reserved Contact Us | Sitemap
Web Designed & Maintained by :
marswebsolution