Jobs

Interviews
Job Alerts
Tools

Upskill and Grow with AI

Mock Interview Practice interviews in realistic simulations

Coding Practice Improve your coding skills with challenges

Certification Earn certifications to validate your skills

AI Learning Get trained with AI expert sessions

Career Path AI insights for smarter career decisions

AI Job Match Score AI-Powered Job Match Against Your Resume and Optimize Your Resume

Career Tools and Resources

Resume Builder Build Professional Resume with Ease

ATS Friendliness Check Check Resume Friendliness for Applicant Tracking Systems

Auto Apply Apply to hundreds of jobs on any platform effortlessly

Co-Pilot (Chrome Extension) Your AI Assistant for Seamless Browsing Efficiency

Interview Questions Streamline interviews with ready-to-use questions

Salaries Discover market-driven salary insights across skillsets and geographies

Companies Explore leading companies actively hiring talent
For Employers

Jobs

Interviews

Home
>
Jobs in mumbai
>
Contactx Resource Management Pvt. Ltd.
>
Source Code Review - VAPT Professional

Source Code Review - VAPT Professional

Contactx Resource Management Pvt. Ltd.

4 - 8 years

3 - 6 Lacs

mumbai

Posted:None| Platform:

Apply

Skills Required

continuous integration secure coding devsecops web application security ci cd pipeline python c++ sonarqube golang microsoft azure javascript ruby spring react.js angular java django git gcp .net php penetration testing api aws

Work Mode

Work from Office

Job Type

Full Time

Job Description

Experience: 4+ years with at-least 2-3 years in client facing advisory consulting role and managing a medium sized team

Preferred Certifications: CISSP, CEH, OSCP, CSSLP, or GWAPT or equivalent are a plus

Desired skill set:

1. Conduct thorough manual and automated static code analysis using tools like SonarQube,

Checkmarx, Fortify, and others to identify vulnerabilities in the source code of applications.

2. Perform detailed reviews of source code to identify security vulnerabilities, coding errors,

and non-compliance with security standards.

3. Strong knowledge of secure coding practices and security vulnerabilities, particularly those listed in the OWASP Top 10 (e.g., SQL injection, XSS, CSRF, etc.).

4. Experience with static application security testing (SAST) tools such as Checkmarx,

SonarQube, Fortify, or similar tools.

5. Hands-on experience in reviewing code for common vulnerabilities in languages like Java,

C/C++, Python, JavaScript, PHP, Ruby, .NET, or Go.

6. Strong understanding of web application security concepts, including HTTP(S), API security,

cookies, sessions, and authentication mechanisms.

7. Familiarity with modern software development frameworks (e.g., Spring, Django, Angular,

React) and how to secure them.

8. Knowledge of common software security vulnerabilities, including injection flaws, data

leakage, broken authentication, broken access control, improper cryptography, and insecure

deserialization.

9. Familiarity with dynamic application security testing (DAST) tools, penetration testing, and fuzz testing for finding runtime vulnerabilities.

10. Experience with version control systems such as Git to facilitate code reviews and secure collaboration.

11. Strong problem-solving skills and the ability to communicate complex security concepts to non-technical stakeholders.

12. Familiarity with the Secure Development Lifecycle (SDL) and integrating security into the development and deployment processes.

13. Experience with cloud-native security practices and securing cloud-based applications (e.g., AWS, Azure, GCP).

14. Strong understanding of DevSecOps and integrating security into CI/CD pipelines.

15. Evaluate code for common security issues such as injection flaws, cross-site scripting (XSS), broken authentication, and other OWASP Top 10 vulnerabilities.

16. Provide actionable recommendations to developers on how to remediate identified

vulnerabilities and improve overall code security.

17. Keep up-to-date with the latest security threats, vulnerabilities, and technology trends to

ensure the organizations code remains secure.

More Jobs at Contactx Resource Management Pvt. Ltd.

Tax Transfer Pricing Professional

mumbai

3.0 - 7.0 yrs

INR 5 - 9 Lacs

Senior Engineer - Projects

gandhinagar, ahmedabad

2.0 - 5.0 yrs

INR 5 - 9 Lacs

Internal Audit - Mutual Fund Professional

mumbai

2.0 - 3.0 yrs

INR 3 - 6 Lacs

Area Sales Manager - BET

chennai, bengaluru

4.0 - 8.0 yrs

INR 3 - 7 Lacs

Sr. Sales Engineer - HVAC / Chiller Sales

hyderabad, chennai

2.0 - 5.0 yrs

INR 2 - 6 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start Python Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.

Job Application AI Bot

Apply to 20+ Portals in one click

Download Now

Download the Mobile App

Instantly access job listings, apply easily, and track applications.

Enhance Your Python Skills

Practice Python coding challenges to boost your skills

Start Practicing Python Now

Contactx Resource Management Pvt. Ltd.

Login to

Please Verify Your Phone or Email

Confirm Action

Search

Profile

Upskill and Grow with AI

Source Code Review - VAPT Professional