Security Consultant – Mumbai – 3 to 4 Years Experience
Job Overview
-
Date Posted4 September 2024
-
Location
-
Expiration date8 November 2024
-
Experience3 Year
-
GenderAny
Job Description
We are seeking an Information Security Consultant with a minimum of 3 years of experience who is available for immediate joining. The ideal candidate will be passionate about security threats and vulnerabilities, with a strong understanding of breaking systems from both application and network perspectives. The role focuses on identifying and assessing vulnerabilities in software systems, networks, and mobile-based applications.
Responsibilities:
- Perform application penetration testing, network penetration testing, and mobile security assessments.
- Create test cases, conduct penetration testing, review source code, generate reports, and present findings to stakeholders.
- Develop and operate tools to assist in security tasks.
- Conduct business-logic based application testing.
- Exploit identified vulnerabilities and present their potential impact.
- Conduct secure code reviews, with a focus on Java.
- Adhere to OWASP Top Ten and WASC threat classifications in testing.
Job Requirements
• Expertise in vulnerability assessment and penetration testing of web applications.
• Familiarity with penetration testing of mobile applications and websites.
• Proficiency in exploiting vulnerabilities and presenting their impact.
• Experience in conducting secure code reviews, particularly in Java.
• Strong understanding of OWASP code review concepts.
• Knowledge of TCP/IP protocol stack, HTTP protocol, encoding standards, encryption technologies, and development frameworks.
Preferred Qualifications
• Proficiency with tools such as Burp Suite, Paros, OWASP ZAP, WireShark.
• Experience with vulnerability scanners like IBM AppScan, HP WebInspect, Nessus, and NTO Spider.
• Familiarity with exploit toolkits like Metasploit and Exploit DB.
About the Company
Infoshare Systems, Inc. is a leading technology solutions provider with a focus on delivering cutting-edge security solutions. We are committed to safeguarding our clients' data by identifying vulnerabilities and implementing best practices in application, network, and mobile security.
