Security Risk Assessor Job description
Roles and responsibilities:
* Performing security Risk Assessment on applications based on industry best practices.
* Performing security design reviews, identifying security issues at design phase and reviewing change requests.
- Performing threat modelling and analysing wider security impact and advising security controls.
* Capable to provide secured and simplified solutions on day to day arising problems.
* Articulate security risks in a business context, facilitating clear communication with stakeholders.
Roles & Responsibilities:
Experience in one or more areas like Risk assessment, Security assessments, Security Audits, Security Architecture reviews, Penetration testing, VAPT, DAST, SAST etc.
* Familiarity with industry regulations, frameworks, and practices. For example, NIST, OWASP, PCI-DSS, ISO 27001 etc.
* Experience in threat modelling, code reviews, security testing, vulnerability detection, attacker exploit techniques, and methods for their remediation.
* Relevant information security certifications like CEH, (CISSP, CISA, CISM for higher bands)
Qualifications:
Bachelor’s or master’s degree in computer science, Computer Engineering or a related field with 3-5 years of proven experience.
Keywords: ISMS, Risk assessment, Vulnerability Assessments, Penetration testing, Security Audits, Security Architecture Reviews, VAPT, DAST, SAST etc.