· 6+ years of IT experience with minimum 3 years of experience in Application Security including Code Security Review.

· Professional certification or designation in information security. An application security focused certification or designation is preferred. (e.g., GPEN, OSCP, etc.)

· Hands-on-experience in using industry standard tools for Penetration Testing and Source Code Review such as BurpSuite, OWASP ZAP, Fortify, Veracode etc.

· Support/lead operational application security activities including but not limited to penetration tests, mobile tests secure code review

· Provide advisory services to IT teams to support remediation of vulnerabilities

· Web Application Security (including web, mobile, API)

· Knowledge of AppSec industry practices (including OWASP)

· Understanding of SDLC and Agile Methodology

· Code and Architecture review

· Security Tools and technology (BurpSuite, ZAP, Fo...