Application Security Analyst - Rancho Cucamonga, CA

[Ajeet Dwivedi]

Application Security Analyst
Location: Rancho Cucamonga, CA – (Days 1 onsite)
Duration: C2C/FT

Technical Skills:

• Conduct application and security assessment and penetration tests against variety of technologies including web application, mobile, cloud, as part of a team
• 3+ years of working experience of Static and Dynamic Application Security Testing of web applications, web services, APIs and microservices including on cloud
• Working experience and good understanding of application development, SDLC process and DevSecOps
• Good knowledge of Static & Dynamic Application Security Testing tools
• Good information security threat & risk-based prioritization abilities
• Analyze vulnerability reports, segregate & prioritize the vulnerabilities, and do impact analysis, risk assessment, and identify false positives
• Good foundation of common software vulnerabilities and their remediation/ mitigation techniques
• Assist with determining and defining appropriate testing scope
• Work collaboratively with a variety of internal stakeholders to deliver high quality penetrations tests
• Provide reports which highlight and clearly articulate vulnerabilities and weakness to clients in terms they understand
• Work within virtual teams of security and technical specialists to ensure quality delivery of leading security assurance services to our internal clients
• Maintain a relevant skill with which to conduct penetration testing in the following domains:
• Infrastructure
• Application
• Mobile (iOS, Android)
• Code review
• Work independently or as part of a team on penetration tests
• Work with global team and external entities to deliver Security Assurance services
• Analyze and review security issues identified
• Supplement automated assessment techniques with manual security assessment approaches
• Communicate security issues identified and mitigation/remediation options
• Should be able to articulate technical concepts in plain words to non-technical community
• Provide regular assessment progress updates that include sufficient detail to convey work completed and upcoming activities
• Research new and emerging threats, counter controls, and technologies on various platforms
• Pentesting skills and experience in application/infrastructure/mobile
• Understanding of the security mechanisms associated with applications, Operating systems, Networks, Databases, Virtualization, and cloud technologies

· Should be well versed with the following:

• TLS transparency log analysis
• Scheduled web application penetration testing
• Application Manual & automated testing
• External penetration testing
• Multi-factor authentication (MFA) assessment
• Vulnerability management program enhancements
• Programming /scripting skills
• Experience working with NIST, OWASP, MITRECWE, MITRE ATT&CK etc.
• CREST/OSCP/SANS or equivalent pentesting certification
• Tools experience in security assessment tools (e.g. NESSUS, NMAP, BurpSuite,ZAP,OWASP tools, Kali Linux tools)
• Experience in Automating Security tests using scripting languages (e.g., Python, Perl, Ruby)
• Good Written & Verbal Communication Skills
• Presentation Skills
• Define and assist in the creation of operational and executive security reports and dashboards

Regards,
 
Ajeet Dwivedi
IT Recruiter
 
Fintech Consulting LLC DBA ApTask  
Connect: 908-460-5774 | aje...@aptask.com  

[Ajeet Dwivedi]

Application Security Analyst
Location: Rancho Cucamonga, CA – (Days 1 onsite)

Duration: C2C/Full Time

Technical Skills:

• Conduct application and security assessment and penetration tests against variety of technologies including web application, mobile, cloud, as part of a team

• Working experience of Static and Dynamic Application Security Testing of web applications, web services, APIs and microservices including on cloud

Thank you,
AjeetDwivedi
ApTask - The Leader in Staffing and Workforce Solutions
120 Wood Ave South Suite # 300,Iselin,NJ 08830
(908) 460-5774 Ext.5263
aje...@aptask.com