3 Owasp Top10 Jobs

As a Software Tester (Automation) at Vineforce, located in Mohali district, you will play a crucial role in ensuring the quality and reliability of our software products. Your primary responsibility will involve creating and implementing automated tests to monitor software quality, identify defects, and improve the overall efficiency of testing procedures. You will collaborate closely with the Quality Assurance team and software developers to provide faster feedback and enhance the software's quality. To excel in this role, you should hold a Bachelor's degree in computer science, Computer Engineering, or a related field, demonstrating a solid grasp of software testing principles. Additionally, you should have a minimum of 1 to 3 years of experience in automation testing, possessing a strong understanding of software development life cycles. Proficiency in automation testing tools like Selenium and expertise in test automation scripting languages such as Java, Python, or C# are essential requirements. Your role will involve defining test cases based on requirements and technical documentation, showcasing your excellent analytical and problem-solving skills. As a Software Tester (Automation) at Vineforce, you should be adept at troubleshooting issues efficiently and communicating effectively within a team, across departments, and with clients. Your skills in automation, Selenium, manual testing, test planning, and DevOps will be key assets in this position. This full-time, on-site role offers the opportunity to contribute to the pioneering future of business technology through innovative Custom SaaS solutions. If you are based in Mohali or Chandigarh and meet the qualifications and skills outlined above, we look forward to meeting you for a face-to-face interview in Mohali. Join Vineforce and be a part of a dynamic team dedicated to shaping the future of software technology.,

As an Analyst in Cyber Security, you will be responsible for applying your hands-on expert knowledge of tools such as Burp, Nessus, Nmap, Nipper, Metasploit, and other latest tools in the field. Your expertise will be crucial in conducting Vulnerability Assessment and Penetration Testing (VAPT) across various domains including Cloud Security, Web, and Mobile Applications. You should possess a solid understanding of OWASP top 10 and other application/network security frameworks to effectively discover and analyze security vulnerabilities. Your experience in Web Application and Internal/External Network Testing will be key in identifying and mitigating security risks. Moreover, your skills in Configuration Review, policy review, system and network hardening, as well as endpoint review will play a vital role in enhancing the overall security posture. Experience in Application Code Review and Testing tools will be an added advantage in this role. Your ability to create comprehensive reports and communicate effectively, both in writing and verbally, will be essential as you directly engage with clients during projects. You will also be expected to review cyber-attack surfaces, recommend security measures, and conduct cyber investigations when necessary. A minimum of 1 year of post-qualification experience in Security Testing Projects is required for this position. Holding certifications such as CEH/CHFI, OSCP/eWPTX, or any other industry-recognized security certification will be advantageous. If you have a basic scripting knowledge in any language, it will be considered a plus. Additionally, your willingness to travel as needed will be appreciated in this role.,

The role of an Application (software) Security Engineer is an entry-level, hands-on, engineering-focused position with the responsibility of fostering a Secure SDLC and secure by design approach and practice across all software engineering teams. You must possess a good combination of problem-solving and communication skills to effectively support the Application Security, InfoSec, and Software engineering teams. Your main responsibilities will include configuring and fine-tuning Application Security tests and vulnerability scans, integrating security testing into CI/CD pipelines, and collaborating with Senior Application Security engineers on Penetration tests set up and validation. Additionally, you will be expected to document and update processes and procedures, conduct research and consultations with colleagues, deliver secure software development training such as OWASP Top10, and collaborate with Security Analysts on software vulnerabilities and security issues. This will involve determining scope, severity, and potential impact of security issues, recommending next steps, and following through with risk treatment and mitigation. You will also be required to appropriately escalate issues to various teams and levels of authority within the organization. To qualify for this role, you must have a Bachelor's degree in a relevant business or technical discipline, along with a minimum of 3 years of relevant work experience. Demonstrated knowledge of application security concepts, best practices, and methods is essential, as well as experience with various application security tools including SAST, SCA, and DAST. Experience with Web Application security testing like Web Pentesting, Fuzzing, and Automated tests is also required. Ideally, you will also have experience securing cloud infrastructure and cloud applications, working knowledge of various architectures and design patterns, ability to code in at least one programming language (such as python, javascript, or go), familiarity with AWS native security tools, and knowledge of current and emerging security technologies and threats. Experience with threat analysis methodologies and tools, developer tools, project management, bug tracking systems, and integrating security tools into CI/CD pipelines would be considered advantageous for this role. This is a challenging yet rewarding opportunity for an individual with a passion for application security and a drive to contribute to the implementation of secure software practices within a dynamic organization.,