To qualify, candidates must have:
- A bachelor degree or higher, technical discipline preferred
- 2 years of working experience in IT security, preferably with exposure to application security testing( source code review and application penetration tests)
- Working knowledge of security principles, techniques and technologies
- Good understanding of network protocols, design and operations
- Strong analytical skills and efficient problem solving
- Willingness to travel and learn
- Good English communication skills (written, oral and report writing)
Good to have skills
- CISSP, CISA, CEH, OSCP or other information security certifications
- Application development background and security knowledge – example of languages include C, C#, C++, Java, J2EE
- Strong experience in scripting, exploit coding and exploitation
- Vulnerability and threat management experience
- Experience with various security tools and products (Fortify, AppScan, etc…)
- Good understanding of the components of a secure DLC/SDLC
- Vulnerability analysis and application reversing skills
- Understanding of cryptography principles