The role is for Cloud Security Engineer and the candidate is responsible to perform end to end security scans on CEGBU products and ensure that they are security complaint.
Minimum 6 to 8 years of hands on experience on end to end Security engineering process is desired
Hands on experience with across versatile tools Burp Suite Pro, IBM App Scan, Fortify, Qualys, HTTP Watch, Open SSL.
Experience on OWASP Pen testing methodology, attack vectors in web applications, risk assessment and vulnerability reporting, Create threat model for applications, Preparation of comprehensive security report detailing findings and provide remediation suggestions for Vulnerabilities.
Knowledge of cloud security, security certifications i.e. CISSP, ECSA, OSCP
Deep knowledge of encryption and cryptographic algorithms including current industry standards for encryption, hashing, certificates etc
Experience in Mobile Application Penetration Testing - iOS & Android
Knowledge of Java programming is a huge plus
Experience in shell/ perl/ python / java / DevOps tools etc
Expertise in one or multiple areas such as operating systems, web services, programming languages, network devices, application vulnerabilities and attack vectors