Cyber Security Engineer - OWASP

Responsibilities : - Develop secure and efficient JavaScript, C#, Ruby on Rails applications, adhering to OWASP guidelines and security best practices. - Implement secure coding practices to prevent common vulnerabilities (XSS, CSRF, SQL injection). - Conduct code reviews to identify and mitigate security risks. - Utilize security testing tools and techniques to validate application security. - Perform security assessments and penetration testing of web applications. - Identify and analyze security vulnerabilities in JavaScript code and related technologies. - Develop and implement security patches and mitigations. - Design and implement secure authentication and authorization mechanisms. - Develop and maintain security tools and scripts using JavaScript and related technologies. - Automate security testing and vulnerability scanning processes. - Integrate security tools into CI/CD pipelines. - Implement and manage security information and event management (SIEM) systems. - Conduct threat modeling and risk assessments to identify potential security threats. - Analyze security logs and alerts to detect and respond to security incidents. - Develop and maintain security documentation and incident response plans. - Provide security awareness training to development teams and other stakeholders. - Stay up-to-date with the latest security trends and vulnerabilities. - Research and evaluate new security technologies and tools. - Design and implement secure APIs, utilizing authentication and authorization best practices. - Implement API security testing procedures. - Secure front-end to back-end communications. - Collaborate with development, security, and operations teams to ensure secure application development and deployment. - Communicate security risks and recommendations to stakeholders effectively. - Participate in incident response and security investigations. Required Skills : - 5-10 years of experience in JavaScript development. - Strong understanding of cybersecurity principles and practices. - Experience with web application security testing and penetration testing. - Proficiency in secure coding practices and OWASP guidelines. - Experience with security testing tools and techniques (static analysis, dynamic analysis). - Familiarity with common web application vulnerabilities (XSS, CSRF, SQL injection). - Experience with API security and authentication/authorization mechanisms. - Proficiency in scripting languages (Python, Bash). - Understanding of networking and security protocols. - Experience with version control systems (Git). - Strong problem-solving and analytical skills. - Excellent communication and interpersonal skills. Preferred Skills : - Experience with security information and event management (SIEM) systems. - Experience with cloud security platforms (AWS, Azure, GCP). - Experience with container security (Docker, Kubernetes). - Certifications in cybersecurity (CISSP, CEH, OSCP). - Experience with Node.js security best practices. - Experience with front-end security frameworks and libraries. - Experience with automating security tasks. - Experience with developing security tools. (ref:hirist.tech)

Location: in, IN

Posted Date: 4/19/2025