Connexions
This listing was posted on hirist.
Security Engineer - Vulnerability Assessment/Penetration Testing (3-5 yrs)
Location:
Bangalore
Description:
Security EngineerLocation : BangaloreCompany : FintechExperience Required : 3+ years of work experienceBudget : 35LPAAbout the Role :As a critical member of the Engineering team, you will be working on raising the bar by implementing and following security best practices. We're on the lookout for a passionate candidate who will have the capability to identify potential risks and craft solutions to eliminate those risks. You will be required to provide the Engineering and Product teams with your infrastructure security expertise to ensure that our products don't have any security flaws.Responsibilities :Security Projects and Processes :- Participate in the development of security projects, processes, and initiatives within your technical focus area (cloud security, identity access management, vulnerability management, penetration testing, etc.).- Drive security audit requirements such as VAPTs.- Contribute to the automation of repeated manual tasks for compliance reporting and to improve team productivity.Collaboration and Communication :- Scope activities of functional security assignments from product and engineering teams.- Improve security operations by enhancing use cases, processes, and/or code structure.- Enforce secure coding practices via DevSecOps and bring visibility to the current state of things.- Collaborate security reviews that follow the standards and best practices of information security.Requirements Technical Skills :- One or preferably two of these software programming skills: Python, Ruby, Golang, Rust, and a working knowledge of microservices application architecture.- Thorough understanding of OWASP Top Ten for web, mobile, and APIs.- Strong understanding of cloud-native architectures and microservices-based web and mobile applications, including API contracts.- Deep understanding of API security tooling like OAuth2.0, SAML, and Keycloak.Security Expertise :- Independently drive security posture enhancement projects like automation, threat modeling, 'security-as-code', application security validation testing, QA integration, and vulnerability/bug remediation through calibration and filtering false positives.- Use SAST and DAST tools like OWASP ZAP and BurpSuite. Experience in using manual and automated scanners like Nessus, Nexpose, QualysGuard, Nmap, and OpenVAS Nexpose besides PT kits like Kali Linux, Metasploit.- In-depth understanding of at least a few security domains (application, network, identity access management, vulnerability management, incident response, encryption, remote access).- Knowledge of Cloud security and DevSecOps practices tools like AWS WAF, AWS Detective, Lambda, AWS Guardduty, AWS Shield, and AWS Inspector- Working knowledge of Wazuh for SIEM of servers and AWS (ref:hirist.tech)
Visit Our Partner Website
This listing was posted on another website. Click here to open: Go to hirist
Important Safety Tips
- Always meet the employer in person.
- Avoid sharing sensitive personal and financial information.
- Avoid employment offers that require a deposit or investment.
To learn more, visit the Safety Center or click here to report this listing.
More About this Listing: Security Engineer - Vulnerability Assessment/Penetration Testing (3-5 yrs)
Security Engineer - Vulnerability Assessment/Penetration Testing (3-5 yrs) is a Engineering Engineer Job at Connexions located in India. Find other listings like Security Engineer - Vulnerability Assessment/Penetration Testing (3-5 yrs) by searching Oodle for Engineering Engineer Jobs.
Security Engineer - Vulnerability Assessment/Penetration Testing (3-5 yrs) is a Engineering Engineer Job at Connexions located in India. Find other listings like Security Engineer - Vulnerability Assessment/Penetration Testing (3-5 yrs) by searching Oodle for Engineering Engineer Jobs.