- Possess end-to-end knowledge and experience in application security testing b. Knowledge of OWASP Top 10, SANS Top 25 vulnerabilities and guidelines c. Prior experience with tools such as Fortify, WebInspect, Acunetix, AppScan, AppSpider, Burp, Zap d. Excellent communication and client handling skills e. Knowledge of SDLC and agile methodologies f. Knowledge of secure design and secure coding best practices is a plus g. Certifications: Any of the following or equivalent:
- EC-Council Certified Ethical Hacker (CEH) / Licensed Penetration Tester (LPT)
- Offensive Security OSCP
- ISTQB CT-SEC
- Infosec Institute Certified Penetration Tester (CPT) / Certified Expert Penetration Tester (CEPT) / Certified Mobile and Web Application Penetration Tester (CMWAPT)
- CompTIA PenTest+
- Security test strategy and test planning 2. Security test estimation, scheduling and status tracking 3. Status reporting to Infosys management and client 4. Overseeing testing team's day to day activities 5. Guiding the security testing team on technical issues 6. Triaging security issues identified with Dev team and provide suggestions for fixing issues 7. Continuous improvement in test methodology, test scenarios and tools
Locations: Delhi NCR/Chennai/Bengaluru
