SRINAV - Application Security Testing Engineer - VAPT (4-8 yrs)

About the Job :

We are seeking a highly motivated and experienced Application Security Testing Engineer (VAPT) to join our dynamic team in Pune. This role is critical in ensuring the security of our applications and systems through comprehensive vulnerability assessments and penetration testing.

We are looking for an immediate joiner with 4-8 years of relevant experience and a strong passion for security.

Role (Job Title) : Security Testing

Notice Period : Immediate Joiners

Work Location : Pune (Hybrid)

Total Experience : 4 to 8 years

Job Description :

The Application Security Testing Engineer will be responsible for conducting thorough vulnerability assessments and penetration tests on our applications and systems.

This role involves identifying and exploiting security vulnerabilities, providing detailed reports, and recommending remediation strategies.

The ideal candidate will have a strong understanding of penetration testing methodologies and be proficient in using various vulnerability assessment tools.

Responsibilities :

Vulnerability Assessment and Penetration Testing (VAPT) :

- Conduct comprehensive vulnerability assessments and penetration tests on web applications, mobile applications, and network infrastructure.

- Identify and exploit security vulnerabilities, including those listed in the OWASP Top 10 and SANS Top 25.

- Perform manual and automated testing to identify security weaknesses.

- Conduct code reviews to identify security flaws.

Reporting and Documentation :

- Prepare detailed reports documenting identified vulnerabilities, their severity, and recommended remediation steps.

- Maintain accurate and up-to-date documentation of testing procedures and results.

- Present findings to stakeholders in a clear and concise manner.

Tool Utilization :

- Utilize vulnerability assessment tools such as Nessus, Qualys, Burp Suite, Nipper, and Acunetix.

- Stay up-to-date with the latest security tools and techniques.

Collaboration and Communication :

- Collaborate with development teams, system administrators, and other stakeholders to address security vulnerabilities.

- Communicate effectively with team members and stakeholders regarding security findings and recommendations.

- Participate in security awareness training and knowledge sharing sessions.

Security Best Practices :

- Stay informed about the latest security threats and vulnerabilities.

- Contribute to the development and implementation of security best practices.

- Perform security configuration reviews.

Qualifications :

Education :

- Master's degree in Computer Science, Information Security, or a related field (preferred).

Experience :

- Minimum 4+ years of experience in vulnerability assessment and penetration testing (VAPT).

- Proven experience in identifying and exploiting security vulnerabilities in networks, applications, and systems.

Technical Skills :

- Strong understanding of penetration testing methodologies, including OWASP Top 10 and SANS Top 25.

- Familiarity with vulnerability assessment tools (i.e., Nessus, Qualys, Burp Suite, Nipper, and Acunetix).

- Knowledge of network protocols, operating systems, and web technologies.

Soft Skills :

- Excellent written and verbal communication skills.

- Ability to work independently and as part of a team.

- Strong analytical and problem-solving skills.

- Passion for security and a desire to learn new things.

Certification :

- CEH (Certified Ethical Hacker) certification is mandatory.