4+Years of Exp in Cyber Security and must have below skills.
- Devsecops / SAST / DAST / Application Security / Scripting (Python/Shell)
- Azure/ AWS security services & configuration management.
- Experience in Vulnerability Assessment & Penetration Testing in Network, Web, Mobile Applications, Kubernetes, Container security & APIs.
- Experience in one or more vulnerability scanning tool. Qualys VMDR, Rapid7 & Tenable is preferred.
- Implement, operate, and manage the vulnerability management program.
- Ensure scans are performed according to policies and scan frequencies.
- Excellent knowledge in Security Operations/Information Security Process, techniques, and technologies.
- Strong knowledge of container security, DevSecops Tools and Security controls.
- Working experience with configuration management.
- Must have prior experience/knowledge on Devsecops implementation (Application Security) and knowledge on Devsecops operation (SAST/DAST)
- Provide recommendations for continuous improvements in Security Operations & Process.
- Experience in Management and Metrics Reporting.
- Experience in defining standards for OS and/or applications.
- Able to demonstrate the identified vulnerability and provide the recommendation for remediation wherever required.
- Certifications like CEH, OSCP, GPEN or other information security or IT platform certifications.
- Experience in vulnerability assessment & penetration testing in Network, Web applications, Mobile applications & APIs.
- Strong understanding of OWASP/SANS Top 25 Concepts
- Hands-on experience on automated & manual application security testing tools like Burp Suite Professional, HCL AppScan Enterprise & Standard, Postman, Nikto, ZAP, SQLmap, Nmap, Kali Linux, etc.
- Experience in developing Application Security policies, process, secure coding standards & guidelines.
- Good knowledge of secure software development standard, process, techniques, and tools.
- Experience in dealing with application security incidents & relevant communication.
- Demonstrated ability to clearly communicate complex ideas verbally and in writing.
- Excellent troubleshooting, problem solving, and analytical skills.
