Description:
Urgently required In Dubai
Senior APP Security Consultant
Mode of hiring/Duration: – 3 Years
Location: – Dubai
Availability: Immediate
Urgent Opening for Senior APP Security Consultant role,
JOB DESCRIPTION
- Experience: 6+years
- Experience with different SAST & DAST & VAPT tools is mandatory with good understanding of OWASP top 10, SANS Top 25 and other industry best standards, frameworks and baseline such as NIST, CIS etc
- Well versed with OWASP Standard, Threat Modelling, Security Architecture Review Expertise along with domain experience in VAPT. Must be well versed with ISMS/ISO
- 27001
- Strong hands-on experience in performing Network Vulnerability Assessment and manual Penetration Testing, Mobile Security Assessment (iOS & Android). Strong hands-on experience in Secure Code Review practice and projects with exposure to SAST tools & manual capabilities for code review
- Minimum 3+ years’ experience in Cloud Security (Azure Security Center, AWS Security Hub) or any experience handling any other cloud-based olutions. Experience of one or more continuous integration tools – e.g. Jenkins, Bamboo.
- Performing DevOps tool integration, configuration for SecDevOps.
- Experience in performing security configuration review for different security tools but not limited F5 LTM, Palo Alto, CISCO, Juniper, Cloud etc. from compliance perspective.
- Experience in reviewing WAF configuration & policy, reviewing WAF rules/signatures to mitigate threats and implements best practices
- Should have holistic view of all Security domains across IT, Mobile, Cloud with experience of solution designing, Security managed services and winning business with global customers
- To lead specific programs and lead the transformation services in security domain should have familiarity with Security Standards and groups (OWASP, OSSTM, WASC, FISMA)
- Experience working with Stakeholders and engaging them in getting the vulnerabilities remediated. Lead vulnerability Identification and remediation process across multiple stakeholders
- Assist in internal and external audits from a compliance standpoint. Fair knowledge of Architecture to suggest Secure Network Layouts and data flows
- Proactively findings loopholes in the applications, Infrastructure, Processes, Architecture, Data security and bring them to notice with plans and suggestions of their betterment thus reducing the overall risk