Security Analyst
GURGAON, HARYANA, India
airtel
We are India's leading telecom provider offering Prepaid, Postpaid, Broadband, DTH, Payment Banks & Business solutions. Join us today with special benefits!EXP
3-5 Yrs
Job Description
- Carry out application penetration tests
- Performing security testing over APIs
- Familiarity with OWASP/SANS standards
- Keep up to date with latest testing and ethical hacking methods
- Perform web/mobile application scan using acunetix and burpsuite.
- Report on findings to a range of stakeholders using a risk based methodology
- Make suggestions for security improvements
- Ability to write scripts/tools to assist in testing
- Experience in using automated and manual testing tools (Burp Suite Pro, Appscan, NMAP, etc)
- Experience in iOS and Android application pen testing
- Experience in different types of penetration testing - Black box, Grey box and White box
- Demonstrated experience with common penetration testing and vulnerability assessment tools (open source and commercial) such as nmap, Wireshark, Kali Linux OS, Metasploit, Burp Suite, Open VAS, OWSAP ZAP, Accunetix, Nikto, Nessus, sqlmap
- Good hands-on experience with Application Security Assessment tools both static and dynamic like Veracode, Fortify, WebInspect, CodeSecure, AppScan, Burp, Paros
- Hands on Experience with Mobile application testing tools like Drozer, Xposed, MobSF, SSLTrustKiller, Frida, apktool, dex2jar, jadx, IDA etc.
- Intermediate knowledge of a programming languages such Java, JavaScript and SQL.
- Intermediate knowledge of Web technologies such as J2EE, XML, JSON, SOAP, REST, and AJAX
- Intermediate knowledge of application security mechanisms such as authentication and authorization techniques, data validation, and the proper use of encryption
- Support development teams with the implementation and running of penetration tests as per Secure SDLC
- Go beyond conventional checklists to create new ones fine-tuned to Airtel specific needs
- Experience with assessment development implementation integration optimization and documentation of a comprehensive and broad set of security technologies and processes within SaaS, IaaS, PaaS environments.
- Manage data and infrastructure security through the use of firewall, antivirus, WAF, DLP and IPS solutions
- Proactively research and recommend infrastructure optimization and enhancements
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Android Antivirus APIs Application security Black box Burp Suite Encryption Ethical hacking Firewalls IaaS iOS IPS Java JavaScript JSON Kali Linux Metasploit Nessus Nmap Open Source OWASP PaaS Pentesting SaaS SANS SDLC Security assessment SQL Veracode White box XML
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.