Security Analyst - Contract - Melbourne

Hastha Solutions

Urgent requirement of Security Analyst - Contract - Melbourne

Requirements

  • Must conduct a comprehensive Vulnerability Assessment and Penetration Testing (VAPT) on Web applications, APIs, Data Science apps(advantage)
  • Conducting manual security testing to complement automated scans.
  • Exploit the vulnerabilities after vulnerability scan & Classification of vulnerabilities according to agreed standard (OWASP, CVS, etc.)
  • Reporting of vulnerabilities based on criticality after scanning and exploitation
  • The incorporation of automated security testing tools, including SAST, DAST, and SCA, into the CI/CD pipeline.
  • Assistance to application team in case of any clarification required to fix identified vulnerabilities
  • Will provide security inputs and security assessments as feasible for the below activities
  • Experience in Manual Pentesting - Web Application, API(Minimum Requirements), Data Science apps(advantage)
  • Knowledge in Threat Modelling STRIDE Methodology (At least basic knowledge)
  • Experience or Knowledge in Architecture review for applications hosted in Google Cloud? (At least basic knowledge)
  • Tools - BurpSuite, Postman, Kali Linux/Parrot OS, Linux understanding

Duration: 6 Months and possible extension

Eligibility: Australian/NZ Citizens/PR Holders only

Email: ***email_hidden***