Must have experience in information security management and/ or related functions penetration testing, vulnerability analysis, intrusion detection etc.
Strong experience in Security testing of web applications,mobile application
Participate in Security test strategy for various projects.
Create Security test plans
Identify vulnerabilities and risks as Security standards like OWASP, SANS.
Track and monitor defects until closure, work on defect tracking tools
Ability to interface with Client, development team and get the issues resolved
Good understanding of application security concepts, protocols, topology and application security guidelines
Analyze the client requirement and provide efforts estimates for the engagements.
Basic knowledge of Networking Concepts, N/W Vulnerability Assessment tools
Should have experience in at least 3 of the following tools: Vega , ZAP, Burp Suit, NMAP, Nikto, SSL Scan, Skipfish, SQLMAP, SoapUI Pro, SOAPSonar,KALI, Parrot Linux, BurpSuite, Wireshark, Acunetix, Netsparkar, Nessus, Qualys, NMAP etc.