Web Application Security

Job Description

Web Application Security Consultant

Company: Netsach – A Cyber Security Company
Job Title: Web Application Security Consultant
Location: Chennai (Onsite)
Experience Required: 3+ Years
Job Type: Full-Time

About the Company

Netsach is a cybersecurity-focused organization specializing in information security consulting, security engineering, and cyber risk management solutions. The company works on embedding practical and scalable security controls into enterprise products, applications, and platforms.

Job Overview

We are looking for an experienced Web Application Security Consultant with strong expertise in application security testing, secure code review, API security, infrastructure security, and DevSecOps practices.

The ideal candidate should have hands-on experience conducting security assessments, identifying vulnerabilities, recommending remediation strategies, and collaborating with development and architecture teams to strengthen enterprise security posture.

Key Responsibilities
Conduct Web Application Security Assessments and gap analysis.
Perform:
Security Code Reviews
API Security Reviews
Configuration Reviews
Integration Security Assessments
Assess and validate:
Infrastructure Security
Database Security
Web Server Security
Transport Layer Security
Identify vulnerabilities and recommend remediation measures.
Collaborate with development, architecture, and leadership teams to implement secure design patterns.
Support DevSecOps and CI/CD security integration initiatives.
Perform testing against hardening standards and security baselines.
Interpret vulnerability assessment reports and calculate security risks.
Build and contribute to “Evil Stories” and security use cases in Agile environments.
Present security findings and mitigation strategies to technical and non-technical stakeholders.
Required Technical Skills
Web & Application Security

Strong expertise in:

OWASP Top 10
CVSS
XSS
SQL Injection
WAF Bypass Techniques
Secure Configuration Reviews
Security Assessment Areas

Hands-on experience in:

Web Application Security Testing
API Security
Security Code Review
Database Security
Integration Security
Transport Layer Security
Underlying Infrastructure Security
Tools & Technologies

Experience with:

Burp Suite
Postman
Tenable Nessus
Checkmarx SAST
GitHub

Knowledge of:

Monolithic Architecture
Microservices Architecture
Pipeline-Driven Security
Containers & OpenShift
DevSecOps & Cloud Security
Experience in DevOps environments.
Understanding of:
CI/CD Pipelines
DAST/SAST Tools
Container Security
Cloud Security Practices
Required Knowledge & Competencies
Strong understanding of:
Security Architecture
Risk Management Frameworks
Security Controls Implementation
Ability to:
Interpret source/compiled code vulnerabilities
Assess security flaws in infrastructure and applications
Recommend balanced security solutions
Scripting and automation capabilities are preferred.
Ability to work independently and handle multiple stakeholders.
Soft Skills
Excellent written and verbal communication skills.
Strong stakeholder and expectation management abilities.
Problem-solving and analytical thinking.
Ability to influence technical and leadership teams.
Strong decision-making and time management skills.
Experience working in Agile environments:
Scrum
Kanban
Educational Qualification
Bachelor’s Degree in:
Computer Science
Cyber Security
Information Security
Mathematics
Physics
Related technical fields
Preferred Certifications
General Information Security
OSCP
CEH
CISM / CISA
Cloud Security
CCSK
CCSP
Azure Security Certifications
Network & Infrastructure Security
CCNA
CCNP
CCIE
Certified Kubernetes Security Specialist
Apply Now

Interested candidates can share their updated resume to:

📧 emily@netsach.co.in