Security Analyst Contract Melbourne

Hastha Solutions


Job Location:

Melbourne - Australia

Salary: Not Disclosed
Experience Required: 5years
Posted on: 4 hours ago
Vacancies: 1 Vacancy

Job Summary

Urgent requirement of Security Analyst - Contract - Melbourne

Requirements


  • Must conduct a comprehensive Vulnerability Assessment and Penetration Testing (VAPT) on Web applications APIs Data Science apps(advantage)
  • Conducting manual security testing to complement automated scans.
  • Exploit the vulnerabilities after vulnerability scan & Classification of vulnerabilities according to agreed standard (OWASP CVS etc.)
  • Reporting of vulnerabilities based on criticality after scanning and exploitation
  • The incorporation of automated security testing tools including SAST DAST and SCA into the CI/CD pipeline.
  • Assistance to application team in case of any clarification required to fix identified vulnerabilities
  • Will provide security inputs and security assessments as feasible for the below activities
  • Experience in Manual Pentesting - Web Application API(Minimum Requirements) Data Science apps(advantage)
  • Knowledge in Threat Modelling STRIDE Methodology (At least basic knowledge)
  • Experience or Knowledge in Architecture review for applications hosted in Google Cloud (At least basic knowledge)
  • Tools - BurpSuite Postman Kali Linux/Parrot OS Linux understanding

Duration: 6 Months and possible extension

Eligibility: Australian/NZ Citizens/PR Holders only

Email:


Required Skills:

Must conduct a comprehensive Vulnerability Assessment and Penetration Testing (VAPT) on Web applications APIs Data Science apps(advantage) Conducting manual security testing to complement automated scans. Exploit the vulnerabilities after vulnerability scan & Classification of vulnerabilities according to agreed standard (OWASP CVS etc.) Reporting of vulnerabilities based on criticality after scanning and exploitation The incorporation of automated security testing tools including SAST DAST and SCA into the CI/CD pipeline. Assistance to application team in case of any clarification required to fix identified vulnerabilities Will provide security inputs and security assessments as feasible for the below activities Experience in Manual Pentesting - Web Application API(Minimum Requirements) Data Science apps(advantage) Knowledge in Threat Modelling STRIDE Methodology (At least basic knowledge) Experience or Knowledge in Architecture review for applications hosted in Google Cloud (At least basic knowledge) Tools - BurpSuite Postman Kali Linux/Parrot OS Linux understanding Duration: 6 Months and possible extension Eligibility: Australian/NZ Citizens/PR Holders only Email:

Urgent requirement of Security Analyst - Contract - MelbourneRequirementsMust conduct a comprehensive Vulnerability Assessment and Penetration Testing (VAPT) on Web applications APIs Data Science apps(advantage)Conducting manual security testing to complement automated scans.Exploit the vulnerabilit...