Cutshort logo
OWASP Jobs in Mumbai

OWASP Jobs in Mumbai

Explore top OWASP Job opportunities in Mumbai from Top Companies & Startups. All jobs are added by verified employees who can be contacted directly below.
icon
Mumbai
5 - 10 yrs
₹7L - ₹15L / yr
Information security management system
Cyber Security
Risk Management
ISO/IEC 27000-series
ITIL
+7 more
● Lead the Cyber Security, Data Privacy and IT Compliance
functions.
● Be a self-driven / quick starter, Have an ownership mindset,
Aggressively drive and deliver results
● Excellent understanding and working knowledge of cloud
based SAAS applications
● Interpret cybersecurity relevant regulatory and other
requirements, or best practices, and translate these to
business-aligned cybersecurity program requirement
● Manage the delivery of cybersecurity projects within
agreed scope, cost, and timescales.
● Input into the design and implementation of standards,
policies, guidelines, and appropriate architectural
principles to ensure the firm’s cyber security goals
continue to be met
● Provide risk-based direction in conjunction with IT Services
for future system enhancements in line with the overall
firm’s strategy
● Continuously evaluate capabilities and drive improvements
to ensure effective preparation, detection, containment,
investigation, remediation & recovery.
● Actively work with stakeholders such as DevOps,
Engineering team, and Infra team to drive solutions
Successful results.
● Highly developed knowledge of cyber security and risk
management principles, practices and project
management skills.
Read more

Top IT MNC

Agency job
Chennai, Mumbai, Bengaluru (Bangalore), Pune, Coimbatore, Kochi (Cochin), Navi Mumbai, Gurugram, Noida, Kolkata, Delhi, Ghaziabad, Faridabad
6 - 15 yrs
₹10L - ₹25L / yr
OWASP
Web application security
Network Security
Nessus
Burp suite
+6 more
Experience: 6-8 years & 10+ years
  • OWASP Secure Code review,• Basic programing knowledge in any programming language and knowledge on secure development practices.
  • OWASP TOP 10 vulnerabilities and their mitigations
  • Hands on experience in Web Application Security Testing tools (SAST & DAST) and Penetration testing tools such as HP Fortify, Checkmarx, Acunetix, Nessus, Burp Suite, Metasploit., Qualys Guard, Kali Linux , etc.
  • Understand/modify exploit code and find logical security flaws in applications
  • Should have knowledge and experience on Network Security, Application Security, Internet Security, attack vectors.
  • To carry out technical vulnerability assessments, identify potential vulnerabilities and provide recommended controls and support to mitigate them.
Read more

at Synoriq RD Pvt Ltd

4 recruiters
DP
Posted by Bhanupriya Dhirwani
Jaipur, Noida, Mumbai, Bengaluru (Bangalore)
2 - 3 yrs
₹3L - ₹5L / yr
VAPT
Vulnerability assessment
Vulnerability scanning
Web application security
OWASP
+2 more
As a part of our Risk Advisory team you’ll build and nurture positive working relationships with teams and clients
with the intention to exceed client expectations.
 
You’ll:

1 Works on projects with clearly defined guidelines as team member with responsibility for project delivery.
2 Works under general supervision with few direct instructions.
3 Performs cyber security assessments which includes vulnerability assessment & penetration testing, network security architecture review.
4 Secure configuration / code review, etc.
5 Understands basic business and information technology management processes.
6 Demonstrates knowledge of firm's methodologies, frameworks and tools.
7 Participate in practice development initiatives.
 
Job Responsibilities:

1 Provide innovation within the context of the Vulnerability and Penetration Testing (VAPT) program in relation to both process and technology.
2 Design, implement, and support VAPT solutions identified as necessary for the protection of firm assets.
3 Serve as a Subject Matter Expert (SME) for the VAPT function.
4 Serve as the system owner for common VAPT toolsets, platforms, and processes.
5 Provide assessment reports that are easily understandable by the target audience and include practical and reasonable recommendations based upon sound risk management principles.
6 Assess the sufficiency of policies, standards and procedures relative to VAPT best practices author standards and procedures designed to continually improve security posture.
7 Engage in continual environmental monitoring to understand the threat environment relative to the organization.
8 Perform authorized attack surface reviews and penetration tests against specific targets at the direction of the Information Security Manager.
9 Provide input into security risk assessments by leveraging specialized knowledge.
10 Report compliance failures to management for immediate remediation.
11 Maintain assigned systems to ensure availability, reliability, integrity, including the oversight of current and projected capacity, performance, and licensing.
12 Define, create, and delivers status reports and relevant metrics to the Information Security Manager.
13 Contribute to the Firm's security-related information repositories and other marketing/awareness endeavors.
14 Mentor junior members of the VAPT group and provide constructive consultation to other peer groups such as Development.
15 Provide exemplary customer service by striving for first call resolution and demonstrating, empathy, respect, professionalism, and expertise.

 

The key skills required are as follows:

1 Good knowledge of TCP/ IP and Networks including Firewall, IDS/IPS, Routers, Switches, and network architecture
2 Experience in Infrastructure Penetration Testing and Application Security Testing
3 Experience in Secure Code Review (Code Security Review)
4 Experience in conducting configuration reviews of Windows, Linux, UNIX, Solaris, Databases, etc.
5 Experience with Vulnerability Management tools: Kali Linux, Acunetix, AppScan, Nexpose, Qualys Guard, Nessus, Nmap, Metasploit, Fortify etc.
6 Experience in basic scripting such as: Shell, Python, PERL, etc.
7 Basic knowledge of Technologies such as: IPSEC, SSL, SSH, VPN, Ethernet Token Ring, WAP, SMTP, FTP, Frame Relay, WAN.
8 ATM, FDDI, DSL, ISDN, HP Openview, Sun NetManage, Cisco Works, Radius, Big Brother, F5.
9 Strong analytical and communication skills (written, verbal and presentation)
10 Open to learn new tools and technologies as per the project requirement
11 Interactive with team members and confident during client meetings, under the guidance of senior members of the project initiative & self driven.
12 Be deadline-oriented and quality-focused
13 Familiarity with industry standards and frameworks such as OWASP, CIS, NIST ISO/IEC 17799, etc.
14 Demonstrates basic knowledge of security and privacy controls and risk management processes
15 Demonstrates basic knowledge in cyber security domain.

What We Offer:
 
Impactful Projects: At Synoriq, you get to work on exciting projects that create a huge impact in the lives of common people. You get an exposure to the various domains we work in - be it the financial sector or the government sector. With projects of such scale, we work on the latest and most popular technologies in the market.
Great Nucleus of Minds: You get to work with the smartest people and learn together. Our team is a bunch of talented designers, engineers, singers, storytellers, and dancers.
Fun: We understand that there’s a life outside the office too. We offer flexibility in work schedule, and work from home so that you give your best everyday.
Leadership Initiatives: We promote overall development of an individual and help you realize your professional goals. There are ample learning opportunities providing exposure in different domains and to work in a cutting edge technology.
 
Read more

at SynRadar

1 video
2 recruiters
DP
Posted by Ashish Rao
Mumbai, Navi Mumbai
2 - 4 yrs
₹4L - ₹8L / yr
Web application security
Cyber Security
Vulnerability assessment
Penetration testing
Information security
+6 more

This profile will include following responsibilities:

 

- Perform Web Application Security Testing

- Perform Mobile Application Security Testing

- Scan Network for Security Vulnerabilities

- Co-ordinate with the clients for Project related queries

- Undertake meeting with the client teams for discussing security issues and recommendations

- Create detailed security reports

- Keep track of project progress & send regular updates

- Research on Open source security tools & new security topics

- Create Security Knowledge base for the team

The candidate should be we well versed with application security concepts, including the mitigation techniques:
  • Web Application Security – OWASP Top 10
  • Mobile Application Security – Mobile OWASP Top 10
  • Threat Modelling
  • Risk Rating Frameworks
  • Web Traffic Interception (For Web/Mobile apps)
  • SSL
  • Network Concepts
  • Web Development Basics - HTTP/HTML/JavaScript
  • Basic Mobile Application Concepts (either Android or IOS)
Read more

at Rajasthan Studio

1 recruiter
DP
Posted by Amita Tambe Irani
Mumbai, Jaipur, Jajpur
2 - 10 yrs
₹7L - ₹15L / yr
PHP
Yii
RESTful APIs
GraphQL
Javascript
+6 more

Rajasthan Studio is looking for young and bright minds for its upcoming innovative, never-experienced-before app platform for virtual art experiences.

 

We are looking for programmers with problem-solving skills and critical thinking abilities for the position of Back End developer. Back End developers are responsible for creating a bridge between customers and business logic, optimizing applications for maximum efficiency, creating dashboards for internal teams, and maintaining brand consistency across the application, among other duties.

 

Backend Web Developers are responsible for managing the interchange of data between the server and the users. The role's primary focus will be the development of all server-side logic, definition, and maintenance of the central database, and ensuring high performance and responsiveness to requests from the front-end. A basic understanding of front-end technologies is necessary as well.

 

Responsibilities -

  • Creating RESTful API/GraphQL to be consumed by Flutter developers
  • Building reusable code and libraries for future use
  • Optimization of the application for maximum speed and scalability
  • Implementation of security and data protection
  • Design and implementation of data storage solutions
  • Participate in the entire application lifecycle, focusing on coding and debugging
  • Write clean code to develop functional web applications
  • Troubleshoot and debug applications
  • Provide training and support to internal teams

 

Skill & Qualifications -

  • Basic understanding of front-end technologies and platforms, such as JavaScript, HTML5, and CSS3
  • Understanding accessibility and security compliances
  • User authentication and authorization between multiple systems, servers, and environments
  • Integration of multiple data sources and databases into one system
  • Management of hosting environment, including database administration and scaling an application to support load changes
  • Data migration, transformation, and scripting
  • Setup and administration of backups
  • Outputting data in different formats
  • Understanding differences between multiple delivery platforms such as mobile vs desktop, and optimizing output to match the specific platform
  • Creating database schemas that represent and support business processes
  • Implementing automated testing platforms and unit tests
  • Proficient understanding of code versioning tools, such as Git
  • Proficient understanding of OWASP security principles
  • Understanding of “session management” in a distributed server environment
  • Knowledge of Yii framework - version 2 (preferred)
Read more
Get to hear about interesting companies hiring right now
iconFollow Cutshort
Why apply via Cutshort?
Connect with actual hiring teams and get their fast response. No spam.
Learn more
Get to hear about interesting companies hiring right now
iconFollow Cutshort