3+ Web application security Jobs in Delhi, NCR and Gurgaon | Web application security Job openings in Delhi, NCR and Gurgaon

Application Security Engineer

About us:

Foxit is remaking the way the world interacts with documents through advanced PDF and digital signature technology. We are a leading global software provider of fast, affordable, and secure PDF and digital signature solutions that are used by millions of people worldwide. Winner of numerous awards, Foxit has customers in more than 200 countries and global operations. We have a complete product line and an exciting and aggressive development schedule. Our proven PDF and digital signature technology is disrupting the status quo establishment and has accelerated our company growth. We are proud to list as customers Google, Amazon, and NASDAQ, and with your skills and help, we plan to add many more. Foxit has offices all over the world, including locations in the US, Asia, Europe, and Australia.

For more information, please visit https://www.foxit.com/

You would be working for the product Foxit eSign, India office which is registered with the name of eSign Genie Software Private Limited.

Job Brief

• Review Software applications for potential security vulnerabilities by conducting application security reviews i.e., Requirements review, Design review, Code Review.
• Clear Understanding and Hands on experience on OWASP Top 10 Vulnerability standards like XSS, SQL injection, session hijacking, and authorization bypass vulnerabilities.
• In-depth research on Web security, familiar with the origin of various Web security problems and solution, having a tracking of Security threats of network.
• Expertise in testing web application vulnerabilities and Network related vulnerabilities.
• Practical understanding and use of commercial application security tools
• Knowledge of the Vulnerability Fixations.
• Hands on development using Java / J2EE
• Solid understanding and experience with establishing application security policies across an organization.
• Good Documentation, reporting, Strong communication, and collaboration skills with various levels of executives from top management to technical team members across the organization.
• Strong self-starter who can operate independently.

What we offer you

• The chance to contribute to the creation of a sophisticated and appealing product, built from scratch with a fresh, global team!
• A fast, flexible, and rewarding incubator-like environment but with the solidity and seriousness of large and stable company in the background
• Be part of the exquisite team that will shell out the next big Foxit product all eyes on us!
• A Pluralsight subscription
• Competitive remuneration package

• OWASP Secure Code review,• Basic programing knowledge in any programming language and knowledge on secure development practices.
• OWASP TOP 10 vulnerabilities and their mitigations
• Hands on experience in Web Application Security Testing tools (SAST & DAST) and Penetration testing tools such as HP Fortify, Checkmarx, Acunetix, Nessus, Burp Suite, Metasploit., Qualys Guard, Kali Linux , etc.
• Understand/modify exploit code and find logical security flaws in applications
• Should have knowledge and experience on Network Security, Application Security, Internet Security, attack vectors.
• To carry out technical vulnerability assessments, identify potential vulnerabilities and provide recommended controls and support to mitigate them.

What you need to have: