4+ OWASP Jobs in Delhi, NCR and Gurgaon | OWASP Job openings in Delhi, NCR and Gurgaon
Apply to 4+ OWASP Jobs in Delhi, NCR and Gurgaon on CutShort.io. Explore the latest OWASP Job opportunities across top companies like Google, Amazon & Adobe.
JavaApplication Security Engineer
About us:
Foxit is remaking the way the world interacts with documents through advanced PDF and digital signature technology. We are a leading global software provider of fast, affordable, and secure PDF and digital signature solutions that are used by millions of people worldwide. Winner of numerous awards, Foxit has customers in more than 200 countries and global operations. We have a complete product line and an exciting and aggressive development schedule. Our proven PDF and digital signature technology is disrupting the status quo establishment and has accelerated our company growth. We are proud to list as customers Google, Amazon, and NASDAQ, and with your skills and help, we plan to add many more. Foxit has offices all over the world, including locations in the US, Asia, Europe, and Australia.
For more information, please visit https://www.foxit.com/
You would be working for the product Foxit eSign, India office which is registered with the name of eSign Genie Software Private Limited.
Job Brief
- Review Software applications for potential security vulnerabilities by conducting application security reviews i.e., Requirements review, Design review, Code Review.
- Clear Understanding and Hands on experience on OWASP Top 10 Vulnerability standards like XSS, SQL injection, session hijacking, and authorization bypass vulnerabilities.
- In-depth research on Web security, familiar with the origin of various Web security problems and solution, having a tracking of Security threats of network.
- Expertise in testing web application vulnerabilities and Network related vulnerabilities.
- Practical understanding and use of commercial application security tools
- Knowledge of the Vulnerability Fixations.
- Hands on development using Java / J2EE
- Solid understanding and experience with establishing application security policies across an organization.
- Good Documentation, reporting, Strong communication, and collaboration skills with various levels of executives from top management to technical team members across the organization.
- Strong self-starter who can operate independently.
What we offer you
- The chance to contribute to the creation of a sophisticated and appealing product, built from scratch with a fresh, global team!
- A fast, flexible, and rewarding incubator-like environment but with the solidity and seriousness of large and stable company in the background
- Be part of the exquisite team that will shell out the next big Foxit product all eyes on us!
- A Pluralsight subscription
- Competitive remuneration package
i. Technology Graduate with 8+ years of experience in the IT industry & Information Security / Cyber Security
iii. Provide Security Vision & Strategy to the Organization, strategic direction, development, and implementation of information security programs and projects to address risks relevant to the attainment of organizational strategic goals.
iv. Experience in advising leadership team regarding Security Technology Land scape, product issues, and possible improvements
v. Expertise in providing executive roadmaps for continual improvement in teams, technology, and processes, process across various security & DevSecops teams
vi. Experienced in Information Security Risk Management, gap analyses, Audits.
vii. Hands-on Experience in formulating Cyber Security Policies, Design and implementation of Security Technologies, DevSecOps.
viii. Working Knowledge in implementation of Cyber Security Solution in Open Source, OpenStack environment.
ix. Ability to provide strategies to increase the ability to withstand cyber-attacks, as measured by annual sophisticated attack simulations.
x. Experience in upgrading, troubleshooting and tuning of Cyber Security Solutions, SOC Operations.
xi. Thorough understanding and good knowledge latest Cyber Security technologies, Security Architectures, vulnerabilities, security threats.
xii. Expertise in Test-Driven Development and establishing a DevSecOps practice. Multiple product launches under your belt - from design to launch, having played a key role in their success
xiii. Ability to setup PoC for latest security solutions
xiv. Good understanding of Open Source Technologies, Private Cloud Technologies.
- OWASP Secure Code review,• Basic programing knowledge in any programming language and knowledge on secure development practices.
- OWASP TOP 10 vulnerabilities and their mitigations
- Hands on experience in Web Application Security Testing tools (SAST & DAST) and Penetration testing tools such as HP Fortify, Checkmarx, Acunetix, Nessus, Burp Suite, Metasploit., Qualys Guard, Kali Linux , etc.
- Understand/modify exploit code and find logical security flaws in applications
- Should have knowledge and experience on Network Security, Application Security, Internet Security, attack vectors.
- To carry out technical vulnerability assessments, identify potential vulnerabilities and provide recommended controls and support to mitigate them.
Java
Amazon Web Services (AWS)
NodeJS (Node.js)Your Impact:
• Implements Digital Consumer experiences based on a foundation of SFCC (Salesforce commerce cloud) to meet expected quality standards
• Ensures functional requirements and high-level solution designs are understood and are translated into detailed technical design
• Implement proofs of concept to prove any new technologies, application flows or integration scenarios and identify customizations needed to SFCC platform for meeting client requirements
• Guides the performance tuning and scalability of the ecommerce solution
• Diagnose and solve technical problems during implementation and support phases
Your Skills & Experience:
• 4-8 Years with 2+ years of implementing commerce application on any eCommerce platform in last 3 years
• If you have not worked in eCommerce platform, we can still discuss with you if you are expert in Java/.Net and understand REST/SOAP webservices.
• Demonstrate proficiency in build and release management using CI/CD strategies (leveraging tools like Jenkins and DevOps practices), implement Mocha/Chai unit and functional test cases in order to reduce costs while ensuring quality
• Contributes to designing, implementing and documenting the build release process as well as system configuration and deployment characteristics of the applications
• Participates in technical walkthroughs/ code reviews of other team members’ components, test plans and results and help them with gaps
• Collaborate with architect to define implementation processes and quality gates and standards
• Identifies risks and issues, and help monitor them
• Guides the development of reference and resource materials
• Mentors developers in improving their platform knowledge and development skills
• Communicate technical design to the developers and help/guide them in the implementation
• Participates in Agile sprints
Set Yourself Apart With:
• eCommerce platform certification
• Security considerations – OWASP, CSRF, reCAPTCHA etc. – Basic knowledge or experience
• Git Development workflow – Proficient
• Visual Studio Code IDE or Eclipse IDE - Proficient
• Knowledge on Agile methodology and desired tools like Jira, confluence etc.
• Scripting/development experience with Node.js, Mocha/Chai
• Experience working in any Salesforce cloud environment like SFMC, SFSC etc.
• Excellent written, verbal communication and articulation skills & Good team player
• Self-starter and self-learner with keen interest to grow
• Process orientation and the ability to define and setup processes
• Ability to provide necessary coaching to bring team members up to speed on the technology
• Ability to prioritize and manage multiple tasks
• Excellent and innovative approach to problem solving and finding solutions
• Flexible and proactive/self-motivated working style with excellent personal ownership of problem resolution
Follow Cutshort