143 Owasp Top Jobs - Page 3

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Application Security Architecture and Design Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are looking for a Technical Lead with strong expertise in Application and Infrastructure Security to lead a suite of security services including vulnerability management, application securit...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Web Application Firewall (WAF) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time educationJob Title:Senior Web Application Firewall (WAF) SMEJob Summary :We are looking for an experienced and technically strong Web Application Firewall (WAF) Subject Matter Expert (SME) to join our Security Delivery team. T...

At EY, were all in to shape your future with confidence Well help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go Join EY and help to build a better working world Attack & Penetration Testing Senior As part of our Cyber Security team, you shall perform penetration testing which includes internet, intranet, wireless, web application, social engineering and physical penetration testing You shall also perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations The opportunity Were looking for Security Consultant / Senior Security Consultant w...

Overview The Application Security Developer III will work closely with both engineering (development) teams and the Information Security group to make sure that RealPage applications are developed with security in mind. Deep awareness of the OWASP Top 10 project and practices for preventing vulnerabilities when developing applications in any tech stack is a key success factor. This person will help to ensure Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST) and Software Composition Analysis (SCA) occurs during the development lifecycle and that reported vulnerabilities are properly remediated. Responsibilities Shift-Left security in Software Development ...

Role & responsibilities Skills we are looking: 1. Penetration Testing Web, Mobile, API Good experience 2. OWASP security standards Good experience 3. Assess the criticality based on CVSS score card- Good experience 4. Report preparation– Good experience 5. Burp Suite tool experience– Good experience

About The Role : Job TitleInfoSec Specialist Corporate TitleAssociate LocationPune, India Role Description As a Cyber security associate, you will play SME role to give operations support to business applications in scanning, automation and remediation guidance. What well offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy, Best in class leave policy. Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident an...

About The Role : Job TitleINFSEC Senior Analyst LocationPune, India Corporate Title NCT Role Description Well versed with OWASP Top 10 Vulnerabilities identification and remediation. DAST (Dynamic analysis security testing) and SAST(Static analysis security testing) experience must be present. Vulnerability Assessment of reported issues. Provide remediation consultation to application teams. Basic guidance to application developers towards remediation of open findings. Experience in Service Now for incidents review. Tool scan configuration assistance and support to application teams Good communication and writing skills to work with global team members Experience in banking domain would be a...

Position Purpose Provide a brief description of the overall purpose of the position, why this position exists and how it will contribute in achieving the teams goal. Responsibilities Direct Responsibilities Direct Responsibilities - To perform Penetration testing (Gray Box and/or Black Box) for Web applications; Thick Client, API, and mobile applications. - To understand the applications security requirements and identify & document the scope of the test - Ensure execution of the documented security scenarios for the application under test. - Document and report all findings - Collaborate with the developers to help them understand the vulnerabilities reported in application - Escalate issue...

As an AppSec Engineer, you will be a guardian of our platform and user data. You will work proactively with our development teams to embed security into every stage of the development lifecycle

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Web Application Firewall (WAF) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are looking for an experienced and technically strong Web Application Firewall (WAF) Subject Matter Expert (SME) to join our Security Delivery team. The ideal candidate will possess deep expertise in WAF ...

Core Technical Skills: Understanding of Offensive Security Methodologies, including Red Teaming, Penetration Testing, and Adversary Simulation. Familiarity with the MITRE ATT&CK framework for mapping TTPs. Hands-on experience with common reconnaissance and exploitation tools like Nmap, Nessus, Burp Suite, Metasploit, Netcat, Wireshark, and Hydra. Basic knowledge of Active Directory attacks, including Kerberoasting, Pass-the-Hash, and Golden Ticket. Knowledge of web application attacks, including OWASP Top 10, SQL injection, XSS, CSRF, IDOR, and SSRF. Knowledge in network penetration testing, such as port scanning, service enumeration, and firewall evasion techniques. Familiarity with phishin...

Enterprise Information Security at Providence is responsible for appropriately protecting all information relating to its caregivers and affiliates, as well as protecting its confidential business information (including information relating to its caregivers, affiliates, and patients) *Note: Please be noted this is 5-day work from office, early joiners are preferred. What will you be responsible for? Assist in the responsibility for the reviewing vulnerabilities' data from multiple sources (i.e. external / internal penetration testing, internal / external vulnerability scanning, etc.) across multiple technologies to determine risk rating of vulnerabilities to business assets. Assist in impro...

Understand application and API functionality of DV core products Implement secure code and develop security vulnerability fixes mitigations and remediations across DVs applications workloads APIs etc. Work with client's security testing teams to help triage potential security issues vulnerabilities. Promote secure development best practices and assist training development and DevOps teams on secure development and secure SDLC. Be engaged in security testing processes and meetings held across DVs application development teams. Ability to apply security knowledge and experience in a DevOps development lifecycle. Drive penetration testing remediation activities for web application vulnerabiliti...

Project Management - Lead and manage the AppSec team consisting of L1 and L2 resources. Serve as the primary point of contact between the Bank and the team for all project-related activities. Monitor daily operations, ensure resource optimization, and address any issues that arise during the engagement. Application & Security Review - Oversee the review of application security including web, mobile, API, and other banking applications. Perform comprehensive reviews of Network Architecture, Source Code, VAPT reports, and configuration audits. Review deliverables from L1 and L2 resources, ensuring completeness and quality. Compliance and Risk Management Reporting Stakeholder Management B.Sc (I...

Key Responsibilities: Conduct comprehensive application security assessments, focusing on the OWASP Top 10 for web and mobile applications. Utilize vulnerability assessment tools to identify and analyze security risks within applications and systems. Collaborate with development teams to integrate security practices into the software development lifecycle (SDLC). Provide recommendations and guidance for remediating vulnerabilities and improving application security posture. Monitor security alerts and take appropriate action to mitigate potential threats. Assist in developing and implementing security policies, procedures, and best practices. Stay up-to-date with the latest security trends, ...

4 to 6 years of experience conducting Application Security assessments Experienced in conducting Manual and Automated DAST for Web, API & Thick client covering OWASP Top 10 Experienced in conducting Manual code review Experienced in Mobile VAPT (Both static and Dynamic) Knowledge of Infra VAPT or at least VA and configuration review Knowledge in Container / Docker security / Cloud Audit is a plus Certifications such as CEH, CRTP, OSCP is preferred Good communication skills, ability to explain vulnerabilities to business users in simple terms. Notice: Immediate to 15 days Location: Bangalore or Chennai or Dubai

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Web Application Firewall (WAF) Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are seeking a skilled and detail-oriented Akamai WAF Engineer to manage and enhance our web application security posture. The ideal candidate will have hands-on experience with Akamai Kona Site Defender,...

Roles and Responsibilities Greetings from GRM Technologies!!! Providing support in IT and Cyber Risk Advisory services offered by GRM Technologies to its clients in the following domains- Information regulatory compliance (ISO 27001, PCIDSS, RBI, SEBI, SOC1, SOC2, PCI DSS, HITRUST, GDPR) Information risk management Information security and information assurance Information technology controls for financial and other systems Identifying processes and technologies to maintain and enhance the security architecture Disaster recovery and business continuity management Information privacy Have a fair understanding of Business Continuity Planning and DR Drills Should have conducted Information Life...

4-9 years of experience in Application Security assessments Manual & Automated DAST for Web, API & Thick Clients (OWASP Top 10) Manual Code Review expertise Mobile VAPT (Static & Dynamic) Infra VAPT / VA / Configuration Review knowledge Bonus: Container/Docker Security & Cloud Audit experience Preferred Certifications: CEH, CRTP, OSCP Strong communication skills to explain vulnerabilities to business users Mandate Skills: Web App, Mobile App, API/Thick Clients, Source/Secure Code Review, Network/Infra PT.

Understand product vision and business needs to define product requirements and product architectural solutions. Use tools and methodologies to create representations for functions and user interface of desired product Develop high-level product specifications with attention to system integration and feasibility Define all aspects of development from appropriate technology and workflow to coding standards Communicate successfully all concepts and guidelines to development team Ensure software meets all requirements of quality, security, modifiability, extensibility etc. Collaborate with other professionals to determine functional and non-functional requirements for new software or applicatio...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Application Security Architecture and Design Good to have skills : NA Minimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are looking for a Technical Lead with strong expertise in Application and Infrastructure Security to lead a suite of security services including vulnerability management, application secu...

About The Role Project Role : Tech Delivery&Op Excellence Practitioner Project Role Description : Understand how to deliver value to clients, and use that commercial competency to apply methods or certifications appropriately. Attention to detail and deep expertise allow them to see inherent risks or improvement opportunities that others may not. Work directly with client teams to ensure a high standard of delivery and operational excellence are met. Must have skills : Governance Risk Compliance (GRC) Good to have skills : NA Minimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Tech Delivery & Op Excellence Practitioner, you will ...

About the Role: Grade Level (for internal use): 10 The Team Security Testing Team in the Quality Engineering space plays a crucial role in safeguarding business operations by identifying vulnerabilities and ensuring robust protection against cyber threats. Through meticulous testing practices, we enhance the security posture of applications, thereby reducing the risk of data breaches and financial loss. By integrating security measures early in the development lifecycle, the team helps streamline processes, minimize disruptions, and ultimately contribute to greater business efficiency and resilience. S&P Global Ratings is the worlds leading provider of independent credit ratings. Our ratings...

Performed Application Security Testing, Cloud Security Testing. Review Reports. Stakeholder management.

Perform Web Penetration Testing, Secure Code Review, API Security Assessment, Mobile Application Security Assessment etc. Report preparation.