Expoint - all jobs in one place

Finding the best job has never been easier

Limitless High-tech career opportunities - Expoint

Citi Group Application Penetration Tester - AVP Hybrid 
India, Maharashtra, Pune 
566562285

03.12.2024

This team specializes in conducting vulnerability assessments on a variety of Citi applications (Web, Mobile, Thick Client, and APIs) by performing automated scan and manually identifying, researching, validating, and exploiting various known and unknown application security vulnerabilities. Core responsibilities include:

  • Act as a subject matter expert in offensive information security performing grey and black box application reviews, programming, networking, operating systems, and databases.

  • Drive remediation by outlining a defense-in-depth approach to business stakeholders and providing strategic solutions to developers on effective security controls and counter measures.

  • Have strong technical writing and presentation skills to report and articulate the vulnerability assessment results to any audience.

  • Contribute to the review of internal processes and activities and assist in identifying potential opportunities for improvement and automation.

  • Must have or be willing to obtain Industry-accredited security certifications such as: GIAC GWAPT, GPEN, OSCP, CISSP

Qualifications:

  • 5-8 years of relevant experience

  • Penetration Testing with expertise in application security.

  • Hands-on experience using security tools (Burp Suite, AppScan, WebInspect, Qualys etc.).

  • Knowledge of OWASP Top 10, CWE/SANS Top 25, Threat Modeling, Open Source Reconnaissance.

  • Knowledge of Scripting languages for automation (preferably Python).

  • Knowledge of application architecture, design and functionalities

  • Consistently demonstrates clear and concise written and verbal communication

  • Proven influencing and relationship management skills

  • Proven analytical skills


Education:

  • Bachelor’s degree/University degree or equivalent experience


This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.

Information Security


Time Type:

Full time

View the " " poster. View the .

View the .

View the