Job Posting Description
Job title: Product Security Specialist
Your role:
This is an individual contributor role. As part of the larger Security and Privacy team, the Application Security Engineer would -
· Perform comprehensive Dynamic Application security Testing (DAST)
· Understand and analyze the applications from security point of view.
· Understand the application security risks and Threat modeling of applications
· Create and execute the corresponding security test cases to verify that the mitigations are properly implemented in the application.
· Able to guide and support development teams to fix the security vulnerabilities in the code.
You're the right fit if :
· 4 years of experience in Application Security Testing and VAPT
· Must have experience in Hardware/ IoT penetration testing.
· Familiarity with code review methods and standards
· Knowledge of OWASP standards and OSSTMM methodologies
· Proficient with tools like HP WebInspect, IBM AppScan, Acunetix, and open-source tools (e.g., Burp Suite, OWASP ZAP, CSRF Tester)
· Background in application development
· Python experience for security automation is a plus
· Research and pilot new technologies for secure software development
· Familiarity with cloud technologies like AWS and Azure is advantageous.
Educational Qualifications:
· Bachelor degree with concentration in Computer Science, Information Systems, Information Security or similar would be preferred.
Preferred Security certifications
Ideally, candidate will possess any one of the below Security certifications(but not mandatory)
· CEH
· ECSA
· LPT
· OSCP