Security Analyst - Contract - Melbourne
Hastha Solutions
Urgent requirement of Security Analyst - Contract - Melbourne
Requirements
- Must conduct a comprehensive Vulnerability Assessment and Penetration Testing (VAPT) on Web applications, APIs, Data Science apps(advantage)
- Conducting manual security testing to complement automated scans.
- Exploit the vulnerabilities after vulnerability scan & Classification of vulnerabilities according to agreed standard (OWASP, CVS, etc.)
- Reporting of vulnerabilities based on criticality after scanning and exploitation
- The incorporation of automated security testing tools, including SAST, DAST, and SCA, into the CI/CD pipeline.
- Assistance to application team in case of any clarification required to fix identified vulnerabilities
- Will provide security inputs and security assessments as feasible for the below activities
- Experience in Manual Pentesting - Web Application, API(Minimum Requirements), Data Science apps(advantage)
- Knowledge in Threat Modelling STRIDE Methodology (At least basic knowledge)
- Experience or Knowledge in Architecture review for applications hosted in Google Cloud? (At least basic knowledge)
- Tools - BurpSuite, Postman, Kali Linux/Parrot OS, Linux understanding
Duration: 6 Months and possible extension
Eligibility: Australian/NZ Citizens/PR Holders only
Email: ***email_hidden***