Sr. Analyst-II, Application Security

Inveso

3 - 8 years

6 - 10 Lacs

hyderabad

Posted:1 hour ago| Platform:

Apply

Skills Required

computer science career development manual testing information security analytical consulting html operations information technology sql

Work Mode

Work from Office

Job Type

Full Time

Job Description

Design, implement, and maintain web application firewall solution for Invesco s web applications.
Collaborate with the Application and Cyber defense team to evaluate and mitigate potential threats to Invescos web applications.
Monitor the web application firewall for security events and take appropriate action to mitigate threats.
Configure and maintain web application firewall rules and policies to ensure optimal protection.
Exception handling the WAF rules.
Conduct thorough penetration tests on Applications to identify vulnerabilities.
Simulate real-world cyber-attacks to assess the effectiveness of security controls.
Utilize a variety of security testing tools, both commercial and open source, to identify and exploit vulnerabilities.
Perform regular vulnerability assessments using automated tools and manual testing methods.
Stay current with emerging security threats and trends in penetration testing methodologies.
Provide consulting services to stakeholders on remediation and mitigation strategies.
Writing reports based on testing output.
Stay up to date with the latest web application security trends and techniques.
Research industry trends and news sources for emerging threat patterns, attack techniques, and vulnerabilities.
Other duties as assigned.

Work Experience / Knowledge:

5 plus years of relevant experience in information security
Minimum 3 years of experience in designing, implementing, and maintaining web application firewall solutions.
Minimum 3 years in penetration testing of Web Applications.
The candidate should also have a solid understanding of API security, API and Application standards, DevSecOps practices, Threat modeling.
Strong understanding of web application security and common vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), and Cross-Site Request Forgery (CSRF).
Experience with web application firewall solutions such as AWS WAF, Cloudflare.
Prior knowledge of penetration testing tools, scripting languages, software vulnerabilities, exploits and malware.
Excellent analytical and problem-solving skills.
Strong communication skills and ability to work well in a team environment.
Relevant certifications such as Pentest+, Burp suite certified practitioner exam, AWS Cloud Practitioner are a plus.
Prior experience of vulnerability management and application security
Possess a solid understanding of enterprise-grade technologies including operating systems, databases, web applications & applicable monitoring tools.
Network infrastructure knowledge
Security configuration knowledge
Proficient operational understanding of how to ascertain, validate, and employ data from sources that are generally available to the public.
Fluent in the techniques that hackers utilize to attack an organization and understand how to pull information from large data sets and how to structure information for reuse.

More Jobs at Inveso

Sr. Eng. I, Distrib Tech

Hyderabad

4.0 - 7.0 yrs

INR 8 - 12 Lacs

Specialist ,RTR

Hyderabad

6.0 - 7.0 yrs

INR 11 - 12 Lacs

Sr Cloud Security Engineer II

Hyderabad

5.0 - 8.0 yrs

INR 10 - 15 Lacs

Analyst II, RTR

Hyderabad

3.0 - 4.0 yrs

INR 5 - 6 Lacs

Human Resource Advisor

Hyderabad

2.0 - 5.0 yrs

INR 4 - 7 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.