YASH Technologies

Lead Consultant – VMS, AppSec, PT

YASH Technologies

full-time

Posted on:

Location Type: Hybrid

Location: HyderabadIndia

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

AngularAWSAzureCloudCyber SecurityFirewallsJavaLinux

About the role

  • Assess and drive the security of different types of applications developed in client environment.
  • Work with development teams or vendors to detect, prioritize and remediate security flaws within the applications.
  • Collaborate with IT and the business to identify and implement appropriate software development related security controls.

Requirements

  • Bachelor’s or Master’s Degree (IT, Computer Science, Cybersecurity, Telecommunications, Engineering, etc.)
  • 5 -7 years equivalent experience
  • Experience with software penetration testing, architectural risk assessment, threat modelling, static code analysis and secure code review
  • Experience with network penetration testing, firewalls configuration, network architecture and security
  • Experience in manual penetration testing of websites, APIs and networks using a variety of tools and technologies
  • Strong experience with vulnerability assessment across different infrastructure components and working with resolver group to prioritize & remediate.
  • Experience in testing network isolation, escalation of privileges, authentication, expanding the attack surface and exploiting vulnerabilities
  • Experience securing applications on a myriad of platforms and languages including Java, .Net, Angular, etc.
  • Experience with a variety of testing tools, including: HCL AppScan, Burp Pro Suite, Veracode, Qualys Suite, NMAP, Metasploit, Kali Linux, Wireshark and OWASP ZAP.
  • Understanding of common Web Application vulnerabilities like XSS, CSRF, and others.
  • Experience in identifying and resolving false positive findings in assessments
  • Firm understanding of networks, operating systems and data-center architecture.
  • Familiarity with cloud technologies (IaaS, PaaS, SaaS, containers) on Google, Azure and AWS environments
  • Experience performing Red Team, Blue Team Operations is a strong plus.
Benefits
  • Flexible work arrangements
  • Professional development opportunities
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
software penetration testingarchitectural risk assessmentthreat modellingstatic code analysissecure code reviewnetwork penetration testingvulnerability assessmentmanual penetration testingapplication securitycloud technologies
Certifications
Bachelor’s DegreeMaster’s Degree