Information Security Specialist (Application Security) - OSCP Certificate Mandatory
Doha, Doha, Qatar
Mekdam Technical Services
Job Role: Information Security Specialist (Application Security)
Work location Government entity
Location: Doha, Qatar
Job Purpose Statement:
We are looking for a skilled Professional for VAPT, Application Security, Offensive Security & compliance profile. The ideal candidate will have experience in Network basics, Security understanding of all OSI layers, SAST, DAST, Mobile apps, Web apps, OWASP Top 10, SANS 25, CWE, CVEs understanding. The candidate should have Minimum 10 years of Experience in relevant profile with high quality process writing and documentation experience.
Principal Accountabilities:
- Strong expertise on preparing reports, presentations in WORD and PPT
- Ensure compliance to the business agreement, policies, procedures, & regulations along with ability to map controls and compliance requirements.
- Point out weaknesses and risks associated with the implemented security measures
- Perform security risk analysis
- Application security based on OWASP Top 10 standards.
- Vulnerability Assessment using Tenable, Offensive Penetration Testing
- Understand business requirements, perform threat modelling, present dashboard & risks to Management
- Understanding Of ISMS/BCMS/NIST any other compliances for security
- Coordination with different stakeholders for explaining and mitigating the risks
- Strong expertise on SAST/DAST tools such as Burp, HP Webinspect, Fortify etc.
- Red teaming/Blue teaming experience will be an added advantage
- Ability to support the deployment of security controls
- Performing Security Awareness sessions, mentoring team etc.
- Must have expertise to lead and participate in Security drills
- Should have ability to lead the end-to-end application security, VAPT or any other assigned projects from Technical stand point.
- Network and Network Security basics understanding
- Working knowledge in: HTTP Protocol, Network security including; LAN / WAN security, TCP/IP Protocol, Unix / Wins security, Firewalls Intrusion
- Monitoring and analyzing network traffic and application logs.
- Investigating intrusion attempts and performing analysis of exploits
- Strong understanding of adversary motivations like cybercrime, cyber hacktivism, cyberwar, cyber espionage, and the difference between cyber propaganda and cyber terrorism
- Strong understanding of databases, operating systems, networks, and tool development
Qualification/ Experience:
A Bachelor of Science in Computer Science major in Information Systems.
OSCP/OSCE is mandatory
Minimum 10 years of experience required.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Compliance Computer Science Cyber crime DAST Exploits Firewalls ISMS Monitoring Network security NIST Offensive security OSCE OSCP OWASP Pentesting Red team Risk analysis SANS SAST TCP/IP UNIX
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Cloud Security Architect jobs
- Open Product Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Information Security Officer jobs
- Open Senior Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Chief Information Security Officer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Ethical hacker / Pentester H/F jobs
- Open IT Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Cybersecurity Consultant jobs
- Open Security Operations Analyst jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Information System Security Officer jobs
- Open Senior Network Security Engineer jobs
- Open CISM-related jobs
- Open C-related jobs
- Open Risk assessment-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Analytics-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open DoD-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open DevOps-related jobs
- Open Splunk-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open IPS-related jobs
- Open Kubernetes-related jobs