This job ad has been posted over 30 days ago...

34

applicants

Application (Web and Mobile) Security Tester Full-time

at Aleph Tav Technologies in Chennai (Published at 06-01-2017)

Application (Web and Mobile) Security Tester

The role is part of a global cyber security assessments team delivering ‘next generation’ mobile and web application security testing. Primary focus of this role would be to perform hands on penetration testing of some of the most critical (web and mobile) applications of our customers. In addition to hand on assessments, a high level of internal client interaction is required in this role and as such as it would suite a technical individual with good “ client facing” skills and the ability to descried security issues based on risk and impact. Successful candidates will have good general knowledge of security concepts and significant experience and proven expertise in mobile native and mobile web application assessments. The successful candidate will have a proven track record in delivery in application security and penetration testing.

To be successful in this role, you should have:

  • Hands-on experience with security scans and vulnerability assessments of mobile applications and devices
  • Familiarity with various open source and commercial application security assessment tools and technologies
  • Basic knowledge of mobile forensics
  • Ability to perform research and develop mobile testing tools for use by internal teams
  • Ability to analyze and develop security threat models and test plans
  • Experience working with mobile and web application developers to validate, assess, understand root cause and mitigate vulnerabilities
  • Experience with configuration and operation of scanning and testing tools and environment
  • Ability to effectively documentation of test results

Qualifications

Technical Skills:

  • Experience with network, server, mobile/web application ethical hacking and exploitation
  • Programming ability or development experience in at least one of the following languages: .NET (ASP.NET), Java, Perl, Python, Ruby, C/C++/ObjectiveC.
  • Experience using XCode or Eclipse for mobile testing.
  • Understanding of Windows, *Nix, Android and iOS filesystems and security architecture along with scripting capabilities
  • Hands-on experience with mobile device forensics and analysis.
  • Hands-on experience with mobile application reverse engineering, security/source code analysis and binary patching.
  • Demonstrated experience with mobile security tools such as NowSecure Lab, Drozer, Substrate, Xposed-Framework and etc.…
  • Understanding of Mobile Device Management services
  • Familiarity with common vulnerabilities in major operating systems (i.e., Windows, Unix and iOS/Android) and ability to track the emergence of new exploitation techniques
  • Experience with application layer assessment tools, such as local proxies and fuzzers
  • Excellent communication skills in English (both written and oral); able to concisely communicate security risks to both technical and business audiences
  • Knowledge and understanding of Agile SDLC and Continuous Testing / Continuous Delivery models

Management and Organization Skills:

  • Excellent verbal and written communication skills
  • Strong organizational skills
  • Proven ability to build relationships with clients and stakeholder
  • Ability to motivate, mentor and develop talent both technically and interpersonal skills
  • Solid understanding of enterprise risk management concepts
  • Highly responsive with an ability to handle escalations quickly and professionally

Preferred Qualifications:

  • Bachelor’s Degree in Engineering or Technology related fields a major plus
  • 2 to 4 years of mobile application security assessment experience
    GMOB, GWAPT, GPEN Certification
  • Knowledge of application reverse engineering techniques and procedures
  • Must have the ability to perform targeted applications penetration tests without use of automated tools
  • Demonstrated understanding of financial sector, or other large organization, security and IT infrastructures

Note: Applications have been closed.



Recent jobs at Aleph Tav Technologies


Viewed: 1089 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend