Job Category : VAPT consultant
Experience : 2-4 Years
Qualification : Graduate in Computer Science, IT, Electronics & Communication or
Information Security or Cyber Security or MCA
Certifications : Any one of CEH, OSCP
Professional Scope of work (JD) in brief under bullets:
1. knowledge of the OWASP Top 10, SANS top 25, WASC security Standards
2. knowledge of common web application attack vectors such as SQL injection, CSRF, XSS, Session
3. Experience in manual application penetration testing of web-based applications, thick-client applications, mobile applications, web services, API’s
4. Perform Web & Mobile Application security assessment.
5. Knowledge and hands on experience in source code review
6. Conduct application penetration exercise using automated tools, customized exploits and manual analysis.
7.Conduct network penetration testing, system vulnerability assessment & security configuration review
8. Provides analysis and validation post remediation.