JPC-232625 - Application Security SME
Job Posted: May 15, 2024 | Total views: 1

Job Description:

• Job Description

  Job Overview

  As a Senior Application Security Engineer at WWT you will play a crucial role in identifying, assessing, and mitigating security risks associated with our applications. You will work closely with cross-functional teams, including software developers, DevOps engineers, and IT professionals, to implement and maintain robust security measures throughout the software development lifecycle.

  Key Resonsiblities

  1. Application Security Assessment: Conduct comprehensive security assessments of web and mobile applications, APIs, and other software systems to identify vulnerabilities and weaknesses. Perform source code reviews and dynamic application security testing (DAST) to analyze and address security flaws. 2. Vulnerability Management/Assessment: Identify and prioritize security vulnerabilities using industry-standard frameworks and tools (e.g., OWASP Top Ten, CVSS). Collaborate with development teams to provide remediation guidance and track the resolution of identified vulnerabilities. 3. Security Testing: Develop and maintain automated security testing scripts and tools for continuous security testing. Conduct penetration testing to simulate real-world attacks and assess the resilience of our applications. 4. Secure Coding: Provide guidance and training to software developers on secure coding practices and best practices for mitigating security risks. Review and enforce secure coding standards and guidelines. 5. Security Architecture: Participate in the design and review of software architecture to ensure security-by-design principles are incorporated. Evaluate and recommend security technologies and solutions to enhance application security. 6. Incident Response: Collaborate with the incident response team to investigate and respond to security incidents and breaches. Assist in the development and improvement of incident response procedures. 7. Compliance and Reporting: Esure compliance with relevant industry regulations and standards (e.g., GDPR, HIPAA) and assist in audits and assessments. Prepare and present regular reports on application security metrics and status to senior management.

  Qualifications and What to look for

  Bachelor\'s or Master\'s degree in Computer Science, Information Security, or related field. Minimum of 6 years of experience in application security, with a proven track record of assessing and securing complex software systems. For Sr. Resources 10yrs exprience is required Relevant industry certifications such as CISSP, CSSLP, GCIH, GCIA, and/or OEM certifications around Application Security Proficiency in common security assessment tools, programming languages (e.g., Java, C++, Python), and security frameworks. Strong understanding of web application security, encryption, authentication, and authorization mechanisms. Excellent communication and interpersonal skills to collaborate effectively with cross-functional teams. Ability to work independently and lead security initiatives. Strong problem-solving and critical-thinking skills.

  Location / Duration / Timings

  Mumbai / 2 yrs / Normal working hours in genarl with ocassional stretch that will be compensated, Laptop to be carried as BYOD

About Company :
Purview is a leading Digital Cloud & Data Engineering company headquartered in Edinburgh, United Kingdom having a presence in 14 countries India (Hyderabad, Bangalore, Chennai and Pune), Poland, Germany, Finland, Netherlands, Ireland, USA, UAE, Oman, Singapore, Hong Kong, Malaysia and Australia.

We have a strong presence in UK, Europe and APEC, providing services to Captive Clients (HSBC, NatWest, Northern Trust, IDFC First Bank, Nordia Bank etc) in fully managed solutions and co-managed capacity models. Also, we support various top IT tier 1 organisations (Capgemini, Deloitte, Wipro, Virtusa, L&T, CoForge, TechM and more) to deliver solutions and workforce/resources.

Company Info: