Senior Application Security Specialist

This role is responsible for providing strong security and remediation services to meet project requirements.

5 yrs experience in Java/ .Net and secure code review.

Apply security best practices while designing and proposing solutions to enterprise customers.

Solid competencies in information security processes, framework, and technologies, such as: Application Vulnerability Assessment, Penetration Testing, Ethical Hacking, OWASP Top 10, NIST, OSSTMM, OSINT etc.

Good understanding of supported frameworks and cleansers functions

Good understanding on core security mechanisms, crypto libraries, and server-side security

Ability to understand vulnerabilities, interact and explain security risks/ impact to teams.

Document vulnerabilities and collaborate with application team to help provide detail remediation along with code snippet.

Experience in tools lie Fortify, Veracode

Adopt risk-based approach to translate technology risk into actual business impacts and prioritized actions.

Ability to listen and articulate ideas verbally and in written formats to a broad range of audiences; ability to ask probing questions and deliver presentations that have impact.

Any security / technology related (Java/ .Net/ Python) certifications are a plus.

Exposure to banking/ financial services domain is a plus.

Expected annual pay for this role ranges from $100000 to $155,000. Based on the position, the role is also eligible for Wipro’s standard benefits including a full range of medical and dental benefits options, disability insurance, paid time off (inclusive of sick leave), other paid and unpaid leave options.

͏

Do

• Ensuring customer centricity by providing apt cybersecurity

• Monitoring and safeguarding the log sources and security access
• Planning for disaster recovery in the event of any security breaches
• Monitor for attacks, intrusions and unusual, unauthorized or illegal activity
• Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems
• Conduct security assessments, risk analysis and root cause analysis of security incidents
• Handling incidents escalated by the L1 team in 24x7 rotational shifts
• Use advanced analytics tools to determine emerging threat patterns and vulnerabilities
• Completing all tactical security operations tasks associated with this engagement.
• Analyses all the attacks and come up with remedial attack analysis
• Conduct detailed analysis of incidents and create reports and dashboards

• Stakeholder coordination & audit assistance

• Liaise with stakeholders in relation to cyber security issues and provide future recommendations
• Maintain an information security risk register and assist with internal and external audits relating to information security
• Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues
• Advice and guidance to employees on issues such as spam and unwanted or malicious emails

͏

Deliver

͏

͏