IN_Senior Associate_Application Security Pentesting_Digital Integration_Advisory_Kolkata

Line of Service

Advisory

Industry/Sector

Not Applicable

Specialism

Microsoft

Management Level

Senior Associate

Job Description & Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

Those in application security at PwC will be responsible for providing security services to development teams including code scanning, readiness testing, and penetration testing to enable application teams to build and deploy secure applications in Production. You will utilise a risk-based methodology and "shift-left" approach to engage early in the software development lifecycle.

*Why PWC

At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.

At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. "

Job Description & Summary: A career within…. 

Responsibilities: 

Strong knowledge of web application security testing, API security testing 

· Strong knowledge of Industry standard application security tools – Burp Suite, Nmap, Zap proxy 

· Strong knowledge of Industry standard DAST tool (example: NetSparker) 

· Strong knowledge in both static and dynamic assessments for desktop and mobile applications 

· Strong knowledge in manual and automated testing process, focusing on OWASP methodology 

· Strong Knowledge of vulnerability identification and remediation methodology. 

· Knowledge of vulnerability assessments of network and security devices 

· Strong knowledge of open source and commercial tools, proficient in Kali Linux based tools 

Mandatory skill sets: 

Pentesting 

Preferred skill sets: 

Certifications: CEH, OSCP, CPTP, LPT, CCNA, CCSK 

Years of experience required: 

4-7 Years 

Education qualification: 

B.Tech/B.E. 

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required: Bachelor of Technology, Bachelor of Engineering

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Code Review, Penetration Testing

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Application Security, Application Security Assessment, Azure Data Factory, Cloud Application Development, Cloud Security, Coding Standards, Communication, Creativity, Cybersecurity, DevOps Practices, Embracing Change, Emotional Regulation, Empathy, Endpoint Security, Forensic Investigation, Hosting Controllers, Inclusion, Information Security, Intellectual Curiosity, Learning Agility, LoadRunner (Software Testing Tool) {+ 30 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Available for Work Visa Sponsorship?

Government Clearance Required?

Job Posting End Date