Application Security Tester - BFS

Application Security Tester

Responsibilities:

- Implementing, Administration, Running, troubleshooting HCL Appscan products: SAST(Static Application Security Testing), DAST(Dynamic Application Security Testing) and IAST (Interactive application security testing) in AppScan using Appscan External device testing using Appscan.

- Align with the solutions team to understand new project demand and proposed solutions.

- Perform False Positive Analysis and report to the stakeholders.

- Define automated security testing workflow for new & existing applications.

- Running Vulnerability assessment on Web application, Mobile and source code.

- Work effectively with a cross-functional team to plan, execute, and communicate findings from AppScan.

- Analyzing tool results, Manual review, remediation support.

- Basic understanding of Penetration Testing, Application Security Audits, Risk assessments, Security Testing (Optional).

- Knowledge on JavaScript, SQL, string understanding of OWASP, SANS25 and Source code Analysis. (Optional)

- Resources should have excellent good communication skills presentation skills.

- Resource should be able to work on the task independently Identifying and automating manual processes.

- Maintaining technical documentation.

- Supporting a 24x7 online environment.

Required Skills & Education:

- 3+ years of experience working as an Application Security Tester.

- Knowledge of SDLC.

- Knowledge of Security Standards, frameworks and groups OWASP.

- Experience in running administrating static analysis SAST and dynamic analysis DAST tools.

- Experience as a Developer or QA tester is preferred.

- Development background in Net, Java, and/or Python a plus.