Application Security Test Analyst

Responsibilities :

Founded in 1991, Lexmark is recognized as a global leader in imaging and output technology solutions and managed print services by many of the technology industry’s leading market analyst firms. Lexmark sells its products and services in more than 170 countries and has its headquarters in Lexington, Kentucky.

Lexmark India, located in Kolkata, is one of the research and development centers of Lexmark International Inc. Our diverse workforce collaborates their skills and ideas to build, deliver, and support first-class products and solutions for our customers.

This job is for a strong technical person in Security Testing role. Candidate should be a

B.E./B.Tech. or higher from a reputed Engineering College/University with around 3 to 5 years of hands-on application security testing experience.

If you are a self-starter and have the aptitude, analytical skills and passion for technology then you will fit right into our Software Security testing team. You’re having prior experience of working in an agile/scrum environment will prove to be an added advantage. Development experience will be a plus.

Your Tasks include:

• Conduct web application security assessments and penetration tests.
• Assess applications for issues surrounding Authentication, Authorization, User management, Session management, Data validation, including all common attacks such as SQL injection, Cross-site scripting, Command injection, Error handling, Auditing and logging.
• Assess the security aspects of Web Services design and implementation, including confidentiality, integrity, trust relationships, and authentication using security standards like XML signatures, XML encryption, SAML, and WS-Security.
• Thick client assessment experience
• Write formal security assessment reports for each application, using Foundstone reporting format.
• Participate in conference calls with clients to perform initial data gathering and a follow-up advisory for technical issues.
• Vulnerability and network penetration assessments
• Mobile applications security testing
• Publish whitepapers, tools and deliver presentations.
• Cloud application Security testing

Required skills include:

• Knowledge of tools such as Fiddler, Paros, Burp, Sqlmap, Nikto, Nmap, Openssl, Mallory, Wireshark etc.
• Mobile application development, assessment (iOS, Android, Windows) experience
• Web application development experience in any of the major languages such as C#, Java, PHP, ASP.NET etc. is a plus
• Knowledge of scripting languages such as Python, JavaScript, Ruby, SQL etc. is a plus
• Experience reviewing code in C, C++, Java, PHP, C#, ASP.NET, Go etc.
• Familiarity with automated source code analysis tools such as Acunetix , Appscan etc.
• Certifications such as OSCP or CEH is a plus
• Working knowledge of version control software like git and Subversion.
• Can demonstrate Lexmark core values: Innovation, Excellence, Agility, Integrity, Community, and Respect.

How to Apply ?

Are you an innovator? Here is your chance to make your mark with a global technology leader.  Apply now!

Global Privacy Notice

Lexmark is committed to appropriately protecting and managing any personal information you share with us. Click here to view Lexmark's Privacy Notice.