Job Category : VAPT consultant 

Experience : 2-4 Years 

Qualification : Graduate in Computer Science, IT, Electronics & Communication or  

Information Security or Cyber Security or MCA

Certifications : Any one of CEH, OSCP

Professional Scope of work (JD) in brief under bullets:  

1. knowledge of the OWASP Top 10, SANS top 25, WASC security Standards

2. knowledge of common web application attack vectors such as SQL injection, CSRF, XSS, Session

3. Experience in manual application penetration testing of web-based applications, thick-client applications, mobile applications, web services, API’s

4. Perform Web & Mobile Application security assessment. 

5. Knowledge and hands on experience in source code review 

6. Conduct application penetration exercise using automated tools, customized exploits and manual analysis. 

7.Conduct network penetration testing, system vulnerability assessment & security configuration review 

8. Provides analysis and validation post remediation.