Job Description
- Should have minimum 2 yrs of information security experience (client serving candidates preferred) in conducting application/network security assessments.
- Should possess at least one of the following certifications OSCP, SANS GPEN, CISSP or any other industry accredited security certifications.
- Good interpersonal, problem solving, reasoning and analytical skills.
- Experience in conducting Red Team assessments, APT attack simulations, etc
Web Application Security Assessment - In-depth knowledge of web application attacks and defense strategies (SQL injection, XSS cross-site scripting, CSRF, logic flaws, etc) and Thick client applications, mobile applications (VAS), ERP applications (SAP, etc)
- Experience in Internal & External Penetration Testing on Network Infrastructure (including Servers, firewalls, Routers, switches, etc) including conducting wireless security assessment.
- Should have a good understanding of application level attacks with hands on experience in discovering and exploiting issues with/without the assistance of tools.
Security Focused Code Review of Applications (at least one of the following languages C, C++, Java, .NET)
- Experience with network penetration testing tools such as nessus, nmap, core impact,
metasploit, and similar.
- Experience with analyzing Router, Switches, Firewall rule base focused on security.
- Experience on Virtualization technologies (VMware), SAP network security. Telecom
network security, VOIP, Cloud security (AWS, Azure), IOT.
- Understanding of application security guidelines/requirements from OWASP, PCI/DSS, etc.,
Employement Category:
Employement Type: Full time
Industry: Banking / Financial Services
Role Category: General / Other Software
Functional Area: Not Applicable
Role/Responsibilies: Opening for Sr. Con/Con_VAPT (Information
Contact Details:
Company Name: Skill VentoryLocation(s): Chennai