Roles and

As an application security SME be responsible for carrying
out Dynamic & Static Application Security tests on applications across

Perform application vulnerability scans and code reviews
using web scanners, database scanners and static code analyzers

Under moderate supervision manage Application Security
testing projects (small/medium) along with its risks and dependencies

Act as a Subject Matter Expert (SME) on Application security
having technical hands-on experience

Job Specifications

Around 3 to 5 years of Application Security experience
inclusive of working in large projects and teams

Strong familiarity with core application security testing
principles with research oriented mindset

Good working knowledge of application exploitations and
their remedies (e.g. Cross Site Scripting, SQL injection attacks, and buffer

Thorough understanding of application architecture and the
various application tier and database tier components (e.g. schemas, database
objects, and file system structure.)

Experienced with programming languages commonly used in
application development, with the ability to review code for script languages
(HTML, JavaScript, PHP, Perl) and compiled languages (Java, C/C++).

 Code security
assessment including configuring scanners, carrying out scans, prioritizing
results, and developing detailed recommendations for remediation

 Have experience with
Source Code analyzers/ByteCode scanners (Fortify, Ounce, Coverity, Klocwork,
Prefix/Prefast/ Findbugs, FXCop) and able to evaluate the results

 RDMS experience, e.g.
Oracle or MS SQL Server will be an added advantage

Having any industry accepted certifications (from ISACA,
ISC2, GIAC etc) will be an added advantage

Excellent Written  and
Verbal Communications


Primary Skill Set

Application Security testing


SQL Inject


4 to 8 Years




Contact Person

Gyanendra Singh

Apply now