This job ad has been posted over 30 days ago...



Sr. Secure Code Review Expert Full-time

at Avalance Global Solutions in Mumbai, Vadodara (Published at 21-02-2017)

Job Description:

The Senior Analyst & Team Lead Security Testing profile is a pivotal role of the Security Testing Services Team. It includes managing and executing complex security testing projects, leading a team of security engineers and ensuring high level of quality in service delivery. It involves enhancing the team’s skill sets and providing high quality deliverables while improving the efficiency of the testing.
The desired candidate is expected to have good knowledge of the code and the security aspect of it for an application.

Required skill set 1: 2-3 Min years of Application Development experience

• The candidate is expected to have at least 2 years of application development experience in developing ASP.Net/J2EE/PHP/C/C++ applications
• The candidate is expected to be familiar with design patterns and STRUTS, SPRING, ASP.NET MVC frameworks
• The candidate should have been an integral part of a complex software project and aware of SDLC processes.
• Experience of Build process plugins like Ant, Jenkins, SonarQube etc.
• Experience in usage of Chef, Puppet and other deployment tools
• The candidate is expected to have good verbal and written communication skills with the ability to talk to both business teams and technical teams
Required skill set 2: 2+ years of web application security testing
• Experience in using HP-Fortify SCA, Web Inspect, and other such static analysis tool
• Experience with Security Code Reviews of applications developed, in java, ASP.NET, PHP etc.
• Experience and knowledge of Application Security – OWASP/SANS etc.

Additional skill sets:

• Experience in Application Architecture Review will be a plus.
• Knowledge of Cryptography (symmetric and asymmetric encryption, PKI, etc.)
• Flexible and creative in helping to find acceptable solutions for customers
• Ability to work on multiple complex assignments simultaneously
• Ability to work independently with minimal oversight or in teams
• Experience with leading and guiding a team of junior engineers

Job Responsibilities:
• The candidate is expected to execute complex and enterprise application security testing projects
• The candidate is expected to have in-depth knowledge and understanding of enterprise applications, web & mobile applications developed in various languages (i.e. Java, ASP, .NET, C++, C#, etc.)
• The candidate is expected to a perform manual and automated security code reviews for applications developed in ASP.Net, J2EE, PHP, C/C++ etc.
• The candidate is expected to work on security code reviews in a devops cycle.
• The candidate is expected to consult and aid customers in helping apply the correct code fix to mitigate vulnerabilities identified
• The candidate will be involved in application architecture understanding, threat identification, vulnerability identification and control analysis
• The candidate would have to manage multiple complex projects simultaneously, when required
• The candidate is expected to engage with both business and technical teams within and outside the organization from a project scope definition, project execution, project closure and post project support perspectives

Job Location : Mumbai, Vadodara

Note: Applications have been closed.

Recent jobs at Avalance Global Solutions

Viewed: 1090 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend