Job Description
- Ability to perform VAPT on IT Applications using various open source and commercial tools like Burp suite/ZAP/CSRF Tester etc.
- Provide assessment reports that are easily understandable by the target audiences.
- Analyze scan reports and suggest remediation / mitigation plan.
- Require deep understanding of IT Application security protocols and its implementation.
- Maintain good verbal communication skills; communicate effectively with technical and non-technical colleagues at all levels in the organization.
- Work within the relevant legislation, policies, and procedures.
- Ability to perform complex troubleshooting of security vulnerabilities.
- OSCP, ECSA, LPT Master, GPEN or any other industry accredited security certifications
- Exposure to OWASP top 10 Knowledge on SDLC and Application Architecture
- Knowledge on Network Security
- Knowledge of scripting languages (Java, dot net, python etc.)
- Broad background of networks, operating systems (windows, UNIX, Linux), firewalls and security engineering concepts.
- Penetration testing planning, analyzing, remediation recommendations, and dashboarding.
- Vulnerability remediation tracking and reporting.
- Expertise with web application vulnerability scanners (Acunetix /HP Web Inspect/IBM AppScan etc. and with source code analysis tools (Fortify/Checkmarx/Vera code/Klocworks)
- Provide remediation guidance to identified vulnerabilities.
- Managing the Statutory and Internal Auditors on Application Security.
- Assess applicable policy, standards, and controls, indirectly manage security technologies, and direct the establishment and implementation of policies and procedures.
- Collaborate and build relationships with firm's Architecture, Business Systems, Operations, Legal and Risk teams.
- Collaborate and build relationships with IT Security and Audit colleagues to help define and ensure consistency of security protocols and risk management.
- Monitor information security trends and keep technology leadership informed about information security -related issues and activities potentially affecting the organization.
- Ensure appropriate business continuity process is followed for infrastructure and applications in accordance with business need, guidelines, policies, and procedures.
- Expertise with Identity and Access Management on the Application
- General knowledge of OS-level scripting languages (bash, ksh, PowerShell, Python, etc.) a plus
- General knowledge of Active Directory (AD), Intrusion Detection and Cloud Technology (Azure)
- Bachelor of Science in Computer Science or a related field.
This is a summary of the primary accountabilities and requirements for this position. The company reserves the right to modify or amend accountabilities and requirements at any time at its sole discretion based on business needs. Any part of this job description is subject to possible modification to reasonably accommodate individuals with disabilities.
About Us
Mouser Electronics, founded in 1964, is a globally authorized distributor of semiconductors and electronic components for over 1,200 industry-leading manufacturer brands. We specialize in the rapid introduction of the newest products and technologies targeting the design engineer and buyer communities.
Mouser has 28 offices located around the globe. We conduct business in 23 different languages and 34 currencies. Our global distribution centre is equipped with state-of-the-art wireless warehouse management systems that enable us to process orders 24/7, and deliver nearly perfect pick-and-ship operations. 
