Application Security Specialist

As a Cybersecurity Specialist you're required to Provide inputs to define cyber governance frameworks and establish governance systems, processes and control systems, Report service level attainment results and provide inputs on improvement opportunities.

Work Location: Ahmedabad(On-Site)

Educational qualifications:

• Bachelor’s in Computer Science or related IT-related discipline.

• Advanced educational qualifications, such as an MBA in Information Systems or a related field.

• One or more of the following certifications: Certified Information Security Manager (CISM), Certified in Risk Management and Information Systems Control (CRISC), Certified in the Governance of Enterprise IT (CGEIT), Certified Information Systems Security Professional (CISSP).

Experience:

• Bachelor’s degree in computer science, Information Security, or related field.
• 8-10 years of experience in application security, including vulnerability assessment and penetration testing.
• Strong understanding of secure coding practices and knowledge of common security vulnerabilities.
• Familiarity with security standards and frameworks such as OWASP, ISO 27001, and NIST .
• Experience with security testing tools and automation.
• Relevant certifications such as CEH, AZ500, AWS Security, Kubernetes, IaC are a plus.
• Excellent communication and collaboration skills.
• Ability to stay up-to-date with the latest security trends, threats, and technologies

Responsibilities

• Conduct regular security assessments of applications to identify and prioritize vulnerabilities.
• Perform penetration testing on web and mobile applications to simulate real-world cyber-attacks and uncover potential weaknesses.
• Review application code to identify and remediate security flaws, ensuring adherence to secure coding practices.
• Evaluate the overall security architecture of applications and propose improvements to enhance resilience against cyber threats.
• Automate repetitive security tasks to improve efficiency and coverage.
• Work closely with cross-functional teams including developers, QA, DevOps, and IT.
• Strong coding and scripting skills (e.g., Python, Java, JavaScript, TypeScript, etc.); ability to prototype tools or support initiatives directly.
• Hands on experience on IaC -Infrastructure as Code.
• Integrate security testing into CI/CD pipelines (DevSecOps).
• Monitor and respond to security incidents, conducting root cause analysis and implementing corrective actions.
• Stay up to date with the latest security trends, threats, and technologies to continuously improve the security posture of applications.
• Build automation scripts to reduce the repetitive task such as reports, attacking scripts, etc

Interested to join, Please reach at 9898791075 for further discussion.