Phoenix Recruitment ยท 8 hours ago
Application security analyst
Maximize your interview chances
Computer Software
Insider Connection @Phoenix Recruitment
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
Tasks within the SDLC process: analysis of analyzer results, rule refinement, evaluation of their effectiveness;
Source code analysis of applications in Java;
Conducting internal penetration tests;
Diving into the workings of containerized applications, understanding their implementations;
Preparing recommendations for identified vulnerabilities, taking into account the specifics of the technological stack and implementations.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Experience with DAST (AFL, Fuzzing, Burp), including creating custom 'farms'
Experience in conducting pen tests for virtualized infrastructure
Experience in analyzing mobile applications
Programming skills in Java
Experience with k8s, Docker
Experience with traffic analyzers (Wireshark, etc.)
Experience in automating routine security processes
Understanding of modern software development processes and practices: Agile, SDLC, DevOps, CI/CD
Competent written and verbal communication skills (English B1, Russian B2+)
Successful participation in Bug Bounty programs
CTF experience
Familiarity with OWASP Testing Guide, OWASP Code Review Guide, OWASP Secure Coding Practices
Experience working with and supporting HashiCorp Vault
Experience with network vulnerability scanners (Nessus, XSpider, MaxPatrol, etc.)
Company
Phoenix Recruitment
Phoenix Recruitment is a leading staffing and recruitment firm that helps companies of all sizes find the best possible talent.
Funding
Current Stage
Early StageCompany data provided by crunchbase