Only US Citizen candidates || Job title:- Web Application Security Engineer||OSWE Offensive Security Web Expert certification || at Remote, Remote, USA |
Email: sandeep.s@winorbittech.com |
From: Sandeep, WinOrbit sandeep.s@winorbittech.com Reply to: sandeep.s@winorbittech.com Job title:- Web Application Security Engineer Visa:- Only US Citizen candidates Location:- Remote OSWE (Offensive Security Web Expert) certification required. MOI:-Skype Duration:- 6+ month Job Description:- Key responsibilities: Primarily conduct secure code reviews of C#, ASP.NET, and other web applications to identify vulnerabilities and security flaws. Provide detailed remediation guidance to development teams, ensuring secure coding best practices are followed with live walkthroughs, as needed. Write detailed reports on findings with remediation guidance Work closely with developers, security engineers, and product teams to address security weaknesses in the codebase Perform manual and automated code analysis, leveraging security tools and static analysis scanners where applicable. Identify and mitigate risks related to OWASP Top 10, SANS 25, authentication flaws, session management issues, and business logic vulnerabilities. Experience & Qualifications you'll need to succeed (MUST HAVES): OSWE (Offensive Security Web Expert) certification required. 5+ years of experience in secure code review Strong proficiency in C#, ASP.NET, and web programming. Deep understanding of secure coding principles, web application vulnerabilities, and remediation techniques. Experience working with static and dynamic analysis tools (e.g., Checkmarx, Fortify, Veracode, or similar). Knowledge of authentication, authorization, session management, and cryptographic best practices. Familiarity with API security, JSON Web Tokens (JWT), OAuth, and modern authentication protocols. Hands-on experience with source code repositories (Git), CI/CD pipelines, and DevSecOps best practices. Excellent written and verbal communication skills to document findings and provide clear guidance to developers. Keywords: csharp continuous integration continuous deployment Only US Citizen candidates || Job title:- Web Application Security Engineer||OSWE Offensive Security Web Expert certification || sandeep.s@winorbittech.com |
sandeep.s@winorbittech.com View All |
12:14 AM 26-Feb-25 |