Information Security Consultant (6-8 yrs)

Responsibilities :

- Conduct penetration testing for thin and thick client-based applications.

- Identify and propose a workaround for critical defects.

- Should be able to deal with multiple platforms like Windows, and Linux and technologies like Java, and DotNet.

- Conduct Threat Modeling of Applications.

- Ability to analyze root causes and deliver strategic recommendations during security reviews.

- Conduct Security Code Review, Penetration Testing, and Consult Product Development Team to secure Financial and Telecom Applications.

- Being a key team member for delivering complete project life cycles - from capturing Customer requirements to delivering timely solutions to Customers.

- Adhering to best practices, and alignment with the Customer's security requirements for project execution, documentation, and reporting.

- Interaction with multi-disciplinary teams for timely meeting of key project milestones and checkpoints.

- Manage Customer relationships at the project delivery level.

Required Skills :

- Strong expertise in penetration testing for thin and thick client-based applications.

- Proficiency in conducting threat modeling and security code reviews.

- In-depth knowledge of Windows and Linux platforms.

- Hands-on experience with technologies like Java and .NET.

- Ability to analyze root causes and propose effective strategic recommendations.

- Familiarity with financial and telecom application security requirements.

- Excellent understanding of project lifecycle and best practices in information security.

- Strong analytical and problem-solving skills.

- Excellent communication and interpersonal skills.

- Ability to manage multiple priorities and work under pressure.

- Detail-oriented with a focus on delivering high-quality solutions.

- Proven ability to maintain customer relationships and ensure successful project delivery.

- Bachelors degree in Computer Science, Information Security, or a related field.

- Relevant certifications such as CISSP, CEH, OSCP, or equivalent are preferred.-