HCL Software Hiring For Application Penetration Tester_Bangalore

Job Description

Role: Application Penetration Tester Exp: 3+ years Location: Bangalore Send resumes to: mounika-d@hcl.software Job description: HCL Software is an exciting place to work, with a wide variety of applications developed across multiple global geographic locations. We are seeking multiple Application Penetration testers for our Product and Infrastructure Security team. Key Responsibilities: Support the companys commitment to protect the confidentiality, integrity, and availability of systems and data. Perform penetration testing and security assessments of products and other applications to identify complex vulnerabilities and drive through to remediation. Drive development of new vulnerability discovery and exploitation techniques. Collaborate with stakeholders to create remediation strategies that will help improve the overall security posture. Write and deliver security assessment reports. Oversee remediation of all findings and recommendations. Help develop security practices and provide guidance to security teams for implementation. Additional security tasks as needed. Skills and Qualifications: Expert knowledge of OWASP Top 10 vulnerabilities, testing procedures, and remediation recommendations. Strong experience with SAST, DAST, and IAST tools. Advanced experience with BurpSuite a must. Experience working with information security frameworks such as SANS and NIST. Programming experience in one or more of the following languages: Ruby, Python, Perl, C, C#, or Java. Strong knowledge of penetration test and assessment procedures, as well as expert knowledge of remediation best practices. Good knowledge of TCP/IP, networking, web applications, databases, mobile, desktop, containerized applications, and cloud applications. Ability to communicate technically with software engineers and development leads, and effectively translate issues and risks into clear and understandable business language. Ability to build network and foster an atmosphere of teamwork within the larger security team and across various business units. Bachelor of Science in Computer Science or related field. GWAPT or OSCP or CEH certification strongly preferred. Strong troubleshooting and analytical skills.