Manager Penetration Testing & Red Team

Operations Requisition ID 4953 Pune, India

Description

Responsibilities:

  1. Serve as the domain expert to assess web applications for security risks
  2. Perform manual and automated scanning and security analysis QualysGuard platform to find web application vulnerabilities
  3. Lead ethical hacking and penetration testing sessions and remediation efforts
  4. Work with engineering teams during application development process to adopt secure design and coding practices
  5. Develop and extend tools that support investigation and improve web application security posture
  6. Collaborate with other security and product experts in Qualys to add new capabilities to QualysGuard product suite.

Requirements:

  1. Bachelors/Masters degree in Engineering, Information Security, Information Assurance, Network Security or related field
  2. 5+ years of strong application security experience with thorough understanding of web application vulnerabilities
  3. A passion for ethical hacking and vulnerability research
  4. Knowledge of secure coding principles and practices for web applications
  5. Hands-on experience with  application security assessment methodologies and tools
  6. Expert knowledge of information security principles, web applications and malicious code and common techniques used by hackers
  7. Knowledge of cloud-based infrastructure and how it affect security implementations
  8.  Experience with application security practices and methods such as OWASP, WASC etc.  
  9. Experience using vulnerability assessment scanners and source code analysis tools such as QualysGuard, Burp Suite, Paros, Samurai WTF, and Kali Linux.
  10. Excellent problem solving and analytical skills; outstanding oral and written communication skills
  11. Self-motivation and the ability to work under minimal supervision are a must
  12. Programming knowledge -  PHP, Java, Python, or Go
  13. Strong knowledge of HTML, Javascript, CSS, XML, HTTP, HTTPS, SQL, TCP/IP

EEO Employer/Vet/Disabled