Conduct comprehensive
penetration tests
on web applications, mobile applications, and network infrastructure to identify vulnerabilities and security flaws.
Perform
static and dynamic analysis (SAST/DAST)
on a variety of codebases and platforms to discover security vulnerabilities and provide actionable remediation steps to development teams.
Work with internal and external customers to scope security assessments, explain the methodology, and support them with feedback and verification during the mitigation phase.
Recommend and implement industry
best practices for vulnerability and threat management
.
Enforce
secure CI/CD practices
by integrating security tools like SAST and dependency checkers into the development pipeline.
Collaborate with development teams to fix identified vulnerabilities and provide guidance on secure coding techniques.
Develop and deliver
training on secure coding and security awareness
for technical staff.
Contribute to the design and implementation of secure SDLC (Software Development Life Cycle) and
security-by-design
principles.

Qualifications

5+ years of experience
in delivering technical security services, including penetration testing, vulnerability assessments, and infrastructure security reviews.
Demonstrated experience with
web and mobile application security
and the ability to discover vulnerabilities in source code and application design.
Strong hands-on experience with technical security tools such as
Burp Suite, OWASP ZAP, Nmap, Metasploit, Nessus, Acunetix, Checkmarx, Fortify, and other SAST/DAST tools.
Security qualification(s) such as
OSCP, GPEN, CEH, CISSP
, or other relevant penetration testing and security certifications.
Strong knowledge and application of
information security frameworks and methodologies
such as OWASP, NIST, and ISO 27001.
Advanced understanding of
security protocols, cryptography, and network security
concepts.
Proven track record of working on complex projects in diverse environments.
Strong analytical and
problem-solving skills
with a customer-oriented approach.
Familiarity with Agile processes and principles.

Desirable

Experience with
cloud security assessments
(AWS, Azure, GCP).
Competence in
project management
best practices.
Experience with
Google Workspace solutions
and SaaS technologies.

More Jobs at Shawne Applebee

Full Stack Mobile & Web Developer

hyderabad, coimbatore, bengaluru

3.0 - 7.0 yrs

INR 5 - 10 Lacs

Oracle Database Developer

hyderabad, coimbatore, bengaluru

3.0 - 7.0 yrs

INR 5 - 10 Lacs

Security Engineer

coimbatore

4.0 - 7.0 yrs

INR 5 - 10 Lacs

Full Stack Developer

coimbatore

4.0 - 7.0 yrs

INR 5 - 10 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.