IBM Security Consultant – VAPT & AppSec 

India, Maharashtra, Mumbai 

383853501

• Conduct comprehensive vulnerability assessments and penetration testing on applications and systems to identify potential security risks.
• Provide expert guidance on application security best practices, standards, and frameworks.
• Develop and execute application security testing strategies, including static, dynamic, and interactive testing methodologies.
• Analyse security vulnerabilities, assess their impact, and provide actionable recommendations for remediation.
• Collaborate with development and IT teams to implement security controls and improve the overall security posture.
• Create detailed and informative reports on security findings, including risk assessments and remediation plans.
• Develop and maintain security dashboards and metrics to monitor and report on the security status of applications.
• Stay up-to-date with emerging security threats and trends to ensure the organization is protected.
• Manage and mentor junior security team members.
• Build strong relationships with clients and stakeholders, providing exceptional customer service.
• Contribute to the development and implementation of security policies and procedures.
• Participate in internal and external audits and compliance initiatives.

Required Technical and Professional Expertise

• Minimum seven years of experience in application security, vulnerability assessment, and penetration testing.
• Hands-on experience with Qualys Vulnerability Assessment and penetration testing tools.
• In-depth knowledge of application security principles, methodologies, and frameworks.
• Proven experience in securing applications in a complex, regulated environment, in the domestic banking industry.
• Strong understanding of security adversaries and threat intelligence.
• Experience in developing and implementing security automation solutions around VAPT.
• Excellent analytical and problem-solving skills.
• Strong written and verbal communication skills.
• Ability to work independently and a to lead as part of a team.
• Strong attention to detail and organizational skills.
• Experience of domestic banking experience

Preferred Technical and Professional Expertise

• CISSP / Security + / OSCE / OSCP Certified
• Certification in Qualys.
• SSCP, CEH, CASP