This job ad has been posted over 30 days ago...

48

applicants

Application Security - Test Engineer Full-time

at Philips in Banglore (Published at 28-05-2019)

Application Security Testing Engineer

The Application Security Engineer is a critical member of the secure application development team and responsible for verifying the required security controls are integrated in product/Service. The Application Security Analysts is responsible for ensuring that application developers have closed security vulnerability gaps found in the applications and have built mitigating controls into HealthSuite Digital Platform (HSDP) products, services and operations.

Responsibilities:
The Application Security Engineer -
 Should be able to understand the Application security risks that as a part of security risk assessments and Threat modeling of applications
 Create and execute the corresponding security test cases to verify that the mitigations are properly implemented in the application.
 Understand and analyze the application code.
 Able to perform Static and Dynamic code analysis
 Able to guide and support development teams to fix the security vulnerabilities in the code.

Preferred Experience:
 3 -9 years of work experience in Application Security
 Understanding and familiarity with common code review methods and standards
 Experience with static analysis tools (e.g., IBM Appscan Source, HP Fortify)
 Application development experience
 Experience in a wide variety of languages, which includes C/C++, Java, .Net, Perl, Python and etc.
 Research and pilot new services / technologies to support secure software development
 Knowledge of standard SDLC practices
 Experience in application security penetration testing
 Experience in tools like HP Webinspect/IBM Appscan/Acunetix and open source tools like burp, OWASP ZAP, CSRF tester etc, Burp Suite
 Experience with Open Web Application Security Project (OWASP) standards, Open Source Security Testing Methodology Manual (OSSTMM) methodologies
 Knowledge in cloud & Big data application security testing
 Sufficient understanding or exposure to testing application on below technology will be helpful
o REST API
o Cloud Foundry
o Encryption
o Data storage for SQL, Oracle etc.
o Big Data / Analytics / Cloud

Preferred Security certifications

 CEH
 ECSA LPT
 OSCP




Recent jobs at Philips


Viewed: 439 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend