Senior Specialist – Cyber Security Application Security

Location:

Experience:

Type:

Senior Cyber Security Specialist

🔹 Key Responsibilities

• Conduct and manage security assessments for multiple agile-based projects.
• Perform application penetration testing for:
• Web, API (REST/SOAP), Microservices
• Thick clients, mobile applications
• Utilize SAST, IAST, CVM, and DAST tools like Checkmarx, Contrast, Black Duck to identify vulnerabilities.
• Eliminate false positives and analyze tool outputs to provide actionable remediation guidance.
• Collaborate with application teams to ensure timely resolution of identified security issues.
• Perform threat modeling using application artifacts such as design documents, user stories, and architecture diagrams.
• Create targeted security user stories and misuse cases for agile security testing.
• Conduct source code reviews (preferably Java or .NET).
• Read and understand application code to offer specific fixes for vulnerabilities.
• Provide clear technical writing and presentations to both technical and non-technical stakeholders.
  

🔹 Required Skills & Experience

• 5+ years of experience in:
• Application security and penetration testing (Web/Desktop/API/Mobile)
• Secure code review (Java or .NET)
• Threat modeling and misuse case design
• Deep understanding of DevOps and CI/CD integration with security tools.
• Strong knowledge of Java, JavaScript, Spring Boot and encryption/key management.
• Familiar with ethical hacking methodologies and frameworks:
• OWASP, OSSTMM, NIST, SANS, CWE, etc.
• Excellent verbal and written communication skills.