Knowledge of Windows and various browsers. Knowledge of security tools like Burp suite, Nmap, ZAP, etc. Knowledge of any of the automated scanners for SAST and DAST. DevSecOps knowledge
- Perform security assessment, vulnerability assessments and penetration tests on a wide variety of high critical web applications.
- Work closely with Devops teams of the platforms to enable DevSecOps and shift-left
- Perform DAST, analyze security issues and suggest remediations.
- Perform web services and API security assessment.
- Guide and mentor team members to perform the above
- Analyze vulnerabilities and their exploitability to guide product teams to put right level of remediation in place.
- Report to leadership teams to provide right visibility of the application security risk for a given product / platform.
