Your Key Responsibilities
· Perform security assessment of web applications, Android, iOS mobile applications
· Assist development teams implementing secure SDLC practices
· Threat model web applications and work with the development team throughout the SDLC
· Work on new product features to make application users and data more secure by involving right from the walkthrough of the product features and practicing secure SDLC
· Inclination towards learning multiple areas of security and build competency to deliver a wide spectrum of security like cloud security, operating systems etc.
· Adapt to technologies / languages / platforms / frameworks of the time
· Innovate to identify the security vulnerabilities as fast as possible in the lifecycle
· Proactively identify vulnerabilities across the platform and recommend fixes
· Ownership of the tasks
Required Qualifications:
· In- depth knowledge of security vulnerabilities not just limited to OWASP Top 10 and SANS TOP 25
· Experience in doing security assessments on web applications, Android and iOS mobile applications in microservice architecture
· Experience in using the security tools to carry out the manual as well as automated security assessments
· Experience working with common product flows like payment gateway integration, authentication etc.
· Good understanding of code versioning tools, such as Git
· Knowledge of how applications get built which may help in multiple scenarios to break the very things
· Passion for security, and a practical and balanced approach to security issues
· Ability to visualize the root cause and deep dive
· Curiosity in knowing how things work in different conditions
· Independent, self- motivated and comfortable working in a fast- paced environment with teams ranging from product to engineering teams