Application Security Analyst
[rancho Cucamonga, Ca, 91739], Not Specified
Employer: Saxon Global
Industry:
Salary: Competitive
Job type: Full-Time
Hi
Hope you are doing good.
We are looking for Application Security Analyst Consultant. This is a full time/ contract position. Please check the job description and reply to me if you are available for this position.
Role: Application Security Analyst
Location: 10801 6th St STE 120, Rancho Cucamonga, CA 91730 (5 Days Onsite)
Duration: Full Time/ Contract
Who are we looking for? Looking for application and security analyst with minimum of total 3+ years of experience in conducting application and security tests against variety of technologies including web application, cloud, mobile and infrastructure as part of a team. Should be able to serve as a trusted advisor in helping customers with relevant decisions based on the findings of the reports and dashboards.
Technical Skills:
Thanks and Regards,
Manish Kumar
P: 972-430-7053 Email: manish.k@saxonglobal.com
Linkedin: linkedin.com/in/manishtechie14
Suite # 660 1320 Greenway Drive, Irving, TX 75038
Website: https://saxonglobal.com/
Hope you are doing good.
We are looking for Application Security Analyst Consultant. This is a full time/ contract position. Please check the job description and reply to me if you are available for this position.
Role: Application Security Analyst
Location: 10801 6th St STE 120, Rancho Cucamonga, CA 91730 (5 Days Onsite)
Duration: Full Time/ Contract
Who are we looking for? Looking for application and security analyst with minimum of total 3+ years of experience in conducting application and security tests against variety of technologies including web application, cloud, mobile and infrastructure as part of a team. Should be able to serve as a trusted advisor in helping customers with relevant decisions based on the findings of the reports and dashboards.
Technical Skills:
- Conduct application and security assessment and penetration tests against variety of technologies including web application, mobile, cloud, as part of a team
- 3+ years of working experience of Static and Dynamic Application Security Testing of web applications, web services, APIs and microservices including on cloud
- Should be good in SAST and DAST, Application security, Devsecops etc.
- Working experience and good understanding of application development, SDLC process and DevSecOps
- Good knowledge of Static & Dynamic Application Security Testing tools
- Good information security threat & risk-based prioritization abilities
- Analyze vulnerability reports, segregate & prioritize the vulnerabilities, and do impact analysis, risk assessment, and identify false positives
- Good foundation of common software vulnerabilities and their remediation/ mitigation techniques
- Assist with determining and defining appropriate testing scope
- Work collaboratively with a variety of internal stakeholders to deliver high quality penetrations tests
- Provide reports which highlight and clearly articulate vulnerabilities and weakness to clients in terms they understand
- Work within virtual teams of security and technical specialists to ensure quality delivery of leading security assurance services to our internal clients
- Maintain a relevant skill with which to conduct penetration testing in the following domains:
- Infrastructure
- Application
- Mobile (iOS, Android)
- Code review
- Work independently or as part of a team on penetration tests
- Work with global team and external entities to deliver Security Assurance services
- Analyze and review security issues identified
- Supplement automated assessment techniques with manual security assessment approaches
- Communicate security issues identified and mitigation/remediation options
- Should be able to articulate technical concepts in plain words to non-technical community
- Provide regular assessment progress updates that include sufficient detail to convey work completed and upcoming activities
- Research new and emerging threats, counter controls, and technologies on various platforms
- Pentesting skills and experience in application/infrastructure/mobile
- Understanding of the security mechanisms associated with applications, Operating systems, Networks, Databases, Virtualization, and cloud technologies
- TLS transparency log analysis
- Scheduled web application penetration testing
- Application Manual & automated testing
- External penetration testing
- Multi-factor authentication (MFA) assessment
- Vulnerability management program enhancements
- Programming /scripting skills
- Experience working with NIST, OWASP, MITRECWE, MITRE ATT&CK etc.
- CREST/OSCP/SANS or equivalent pentesting certification
- Tools experience in security assessment tools (e.g. NESSUS, NMAP, BurpSuite,ZAP,OWASP tools, Kali Linux tools)
- Experience in Automating Security tests using scripting languages (e.g., Python, Perl, Ruby)
- Good Written & Verbal Communication Skills
- Presentation Skills
- Define and assist in the creation of operational and executive security reports and dashboards
Thanks and Regards,
Manish Kumar
P: 972-430-7053 Email: manish.k@saxonglobal.com
Linkedin: linkedin.com/in/manishtechie14
Suite # 660 1320 Greenway Drive, Irving, TX 75038
Website: https://saxonglobal.com/
Created: 2024-04-30
Reference: SG - 80851
Country: United States
State: Not Specified
City: [rancho Cucamonga, Ca, 91739]