Title: Application Security Specialist
Experience: 8 to 10 Years
Mandate Skills – Experience in SAST, DAST, Vulnerability Management/ OWASP/DevSecOps.
Good communication and customer interaction.
Good To Have – Experience in Network Security/Cloud Security.
Required Skills and Qualifications
- Technical Proficiency
- Legacy technologies: Java, .NET
- Modern technologies: React, Node.js, Python, PHP, Ruby/Rails, Angular, etc
- CMS experience with Magento-Adobe and Avocode
- Cloud Skills
- Expertise with AWS and Azure cloud platforms
- Security and Compliance Knowledge
- Strong understanding of OWASP Top 10, OWASP ASVS, PCI DSS, HIPAA, GDPR, CIS Benchmarks, and NIST Cybersecurity Frameworks
- Familiarity with SANS Top 25 Software Errors and their remediation strategies
- Knowledge of static compliance standards and security frameworks
- Security Testing Expertise
- Proficiency in SAST, SCA, DAST, IAST, and penetration testing techniques
- Experience in Threat Modeling to proactively identify and mitigate risks
- Strong knowledge of VAPT, mobile, and API security testing
- DevSecOps and SDLC Integration
- Expertise in implementing Secure Software Development Lifecycle (SDLC) practices
- Proficiency in integrating security tools with CI/CD pipelines using Jenkins and Azure DevOps
- Soft Skills
- Excellent communication skills to bridge the gap between technical and business teams
- Strong leadership and collaboration skills
Ability to articulate technical issues to both technical and non-technical audiences.