Key Responsibilities:
- 10+ years' experience in the software development (Microsoft Technology stack) including a minimum of 2 years in a similar role.
- Extensive full stack development expertise including C#.NET, .NET Core, ASP.Net MVC, Web API, SQL Server, and Blazor.
- Good understanding of JavaScript, TypeScript, CSS, HTML.
- Experience in RESTful services, WCF services, SOAP services.
- Experience in DevOps and azure skills.
- Experience in Oauth2, OIDC and SAML authorization protocol.
- Advanced and specialized knowledge of industry best practices, programming languages, design patterns, architecture, and technology in related areas from solutions perspective.
- Extensive experience in developing enterprise-scale software platforms.
- Ability to work directly with client and autonomously on highly complex and diverse projects.
- Ability to interpret design and software requirement documents and artifacts.
- Drive teams to deliver high quality technical solutions.
- Strong understanding of Object-Oriented Programming concepts and SOLID principles.
- Strong hands-on knowledge in Visual Studio Team System.
- Familiarity with Agile delivery model.
Skill & Experience:
- 5+ years of hands-on experience in security testing, including at least one enterprise software with total experience of 10+ years of experience.
- Managing security access.
- Handling security assessments via vulnerability testing and risk assessment reports.
- Conducting both internal & external security inspections.
- Examining security violations to recognize the source of the cause.
- Continuously renewing the company's incident response and emergency recovery methods.
- Testing the security of third-party companies and co-operating with them to meet security specifications.
- Plan and create penetration methods, scripts, and tests.
- Carry out remote testing of a clients’ network or on-site testing of their infrastructure to expose weakness in security.
- Simulate security breaches to test a systems relative security.
- Use automated tools (primarily Burp Suite), manual penetration testing tools and source code analysis tools for security analyses to identify vulnerabilities and attack vectors in web applications, thick clients, web services and mobile application security.
- OSCP, OSWP, GPEN, GWAPT, SAST, DAST, OWASP, Scanning tools.
Key Skills:
App Testing, Security Testing, Web Testing, Burp suite, Security, Appscan, Load Runner, Penetration Testing, Mobile Testing, Test Case Review Incident, Management, Pentest, Load Testing, Test Cases, Automation.