This job ad has been posted over 30 days ago...

22

applicants

Senior QA Engineer-Specializing in Application Security Analyst Full-time

at CipherCloud India Pvt Ltd in Hyderabad (Published at 03-06-2014)

Key Responsibilities:

Perform application and infrastructure penetration tests, as well as physical security review and social engineering tests for our global clients
Review and define requirements for information security solutions
Perform security reviews of application designs, source code and deployments as required, covering all types of applications (web application, web services, mobile applications, thick client applications, SaaS)
Participate in Security Assessments of networks, systems and applications
Work on improvements for provided security services, including the continuous enhancement of existing methodology material and supporting assets

Job Requirements:

Bachelor degree or higher, technical discipline preferred
Two years of working experience in IT Security, preferably with exposure to application security testing (source code review and application penetration tests)
Working knowledge of Security principles, techniques and technologies
Good understanding of network protocols, design and operations
Strong analytical skills and efficient problem solving
Willingness to travel
Willingness to learn
Good English communication skills (written and oral)

Skills Required:

CISSP, CISA, CEH, OSCP or other information security certifications
Proficiency with vulnerability assessment processes and tools: OWASP, Metasploit, nmap, nessus, Burp Suite, Webinspect, etc.
Understanding of security as it relates to multiple operating systems: HPUX, Linux, AIX, Windows, z/OS, etc
Understanding of access control, authorization and authentication technologies: PAM, Active Directory, LDAP, etc.
Understanding of securing fundamental networking protocols: DNS, HTTP, TCP, UDP, TLS, IPSEC, 802.1x, NFS
Understanding of encryption fundamentals (symmetric/asymmetric, ECB/CBC operations, AES, etc.)
Understanding of risk modeling concepts and frameworks (STRIDE, DREAD, FAIR, etc.)
Strong background in data driven information security decision making and prioritization
Proficiency with web application vulnerabilities(testing and remediation). i.e. OWASP top10
Application development background and security knowledge – example of languages include C, C#, C++, Java, J2EE
Vulnerability and threat management experience
Experience with various security tools and products (Fortify, AppScan, etc…)
Good understanding of the components of a secure DLC/SDLC
Vulnerability analysis and application reversing skills
Understanding of cryptography principles


About Company
CipherCloud has generated significant customer traction within a short period and been doubling employees every six month to accommodate fast growing market demand. Recognized by Gartner as a Cool Vendor in Cloud Security, CipherCloud is backed by premier venture capital firms including Andreessen Horowitz, Index Ventures, and T-Venture, the venture capital arm of Deutsche Telekom. CipherCloud has patent-pending technology, strong market traction, marquee customers, strong management team and stellar investors to continue to expand market presence and industry leadership.
CipherCloud’s India Development Center (IDC) is located in Hyderabad.Hyderabad center has fast growing departments of Development, QA, Documentation, Technical Support, Marketing, Business Development and Administration. CipherCloud has been hiring strong Java developers, cryptographers, QA and product management professionals.


Note: Applications have been closed.


Recent jobs at CipherCloud India Pvt Ltd


Viewed: 1701 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend