Information Security Consultant: Full-time

at Varutra Consulting pvt. Ltd in Pune (Published at 20-05-2020)

The major focus will be on Application Penetration testing followed by Network Penetration Testing and
Mobile Security assessments.
 The work involves Test Case Creation, Penetration Testing, Source code reviews, Report
Creation & presentation to stakeholders along with operation and construction of tools to
assist in these tasks.
 Well versed with OWASP – Top Ten and WASC Threat Classifications
 Expertise in Vulnerability Assessment and Penetration Testing of Web Applications
 Business‐Logic based application testing
 Penetration testing of Mobile applications and websites.
 Exploitation of the issues found and presenting the impact occurred
 Source Code Reviews – Well versed in Java Secure Code Review
 Well versed in OWASP Code Review concepts & identifiers
 Familiar with popular tools: * Application Proxy: Burp suite, Paros, OWASP ZAP, WireShark *
Vulnerability Scanners: IBM AppScan, HP WebInspect, Nessus, NTO Spider * Exploit Toolkits:
Metasploit, Exploit DBetc
 Understanding of the nature and sources of security vulnerabilities, how to identify and exploit
 Sound Knowledge of TCP/IP protocol Stack, HTTP protocol, encoding standards, encryption
technologies and development frameworks.
Mandatory Skills:
 Application Security Testing/Penetration Testing (Web-based, Thick client, web services, Mobile)
 Network Security Testing/Penetration Testing (Network, OS, Databases etc)
 Static Code Analysis/ Secure Code Review.

Recent jobs at Varutra Consulting pvt. Ltd

Viewed: 386 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend