Job Description

Job Type: Fulltime

Location: Birmingham, Alabama (Onsite)

Experience: 6+years

• Work experience in Vulnerability Management & Penetration Testing for Web Application and Web API
• Work experience and Proficiency exploitation of vulnerabilities
• Work experience in Secure Build Pipelines and CI/CD Security Integration
• Work experience in Manual Security Testing (DAST, SAST) and Architecture Design Review.
• Good Knowledge in Common Application Secure Coding, Vulnerabilities & Remedies.
• Good knowledge in Threat Modelling using tools like STRIDE
• Soft Skills/Teamwork - Good Communication skills & Team Player.

Roles & Responsibilities:

• Security Threat modelling – Identify security threats in data flow Using STRIDE and PASTA Modelling and perform threat analysis for mapped threats
• Proficiency in generating manual security testing report from POST MAN and Burp Suite
• Application Architecture Review and Security Requirements Review, asses the IP of various Environment of applications
• Proficiency in Application Composition & SBOM artifacts for Application releases.
• Proficiency in delivering results from Tenable Scan for On Prem applications and Wiz Scan for Cloud Applications
• Proficiency on assessment and perform security risk calculation (High, Low & Medium) based on client risk rating questionnaire
• Proficiency in Synk- Tool to perform SAST (Static Analysis Security Testing)
• Proficiency in Wiz-Cloud Tool to perform Infra scan
• Proficiency in Tenable Tool to perform On prem Infra scan
• Proficiency Burp Suite Tool to perform Web App Pen Testing
• Proficiency PostMan Tool to perform API Pen testing
• Proficiency in Parrot OS-Environment - Security Framework OS

Salary Range - $100,000-$120,000 a year

#LI-RJ2