Security Testing_2 to 3 Yrs_Mumbai

;"Role : Security Test Engineer Key Responsibilities : The candidate will be part of Consumer Cloud QA Team and will be accountable for Security testing. Major Responsibilities: • Participate in Security test strategy for various projects. • Create Security Test plans. • Create test data for testing. • Participate in test script review along with the team. • Confirm to the Configuration Management process and use the tool as per the process. • Analyze test results and identify security risks. • Identify vulnerabilities and risks as Security Standards like OWASP, SANS. • Report test results to supervisor and/or other team members in a clear and concise manner assisting them to improve Quality of the software. • Attend bug review meetings and explain and reproduce defects, if required • Track and monitor defects until closure, work on defect tracking tools • Report progress of work in a timely manner and collect metrics as per the Project guidelines Education Qualifications : Bachelor degree in Engineering in Computer Science or Electronics, MCA, MSC Comp Science. IT Product/Service company background with experience in Security Testing. nature and scope of responsibilities the candidate should have handled : Candidate should be able to communicate effectively with the teams involved- mandatory. Candidate should have worked on atleast 3 Security Testing projects - mandatory Candidate should have good understanding of web application vulnerabilities. Candidate should be familiar with security standards like OWASP, SANS, etc. Candidate should have experience in creating Security Test plan and strategy. It is good if Candidate has at least 1 certification: CEH, ECSA, etc Knowledge & Skills Strong experience in Web Application Security Testing with good understanding of web application vulnerabilities. Should be familiar with security standards like OWASP, SANS, etc. Knowledge of SOAP/REST web services and API security Testing Should have good knowledge of tools like Burp/ Fiddler/ Qualys/ Acunetix/ Nmap/ ZAP/ Nessus, etc. Experience in Mobile Security Testing on various platforms like Android, IOS and Windows will be added advantage. "