Системный аналитик
генерация резюме под вакансию
сопроводительное письмо
описание
Luxoft is a global IT service provider that delivers software engineering and digital transformation solutions to clients across various industries, including telecommunications. The application security team focuses on creating secure software environments and conducting security assessments for large-scale enterprise systems.
задачи
- Develop security requirements at early stages of the product life cycle;
- Prepare test scenarios for audits based on business requirements, technical documentation, and affected systems;
- Identify defects and vulnerabilities in new and existing software using static code analysis (Java, J2EE, mobile apps) and dynamic scanning (Burp Suite, OWASP ZAP);
- Perform manual penetration tests on software deployed in test environments;
- Develop recommendations for software developers to address identified security flaws;
- Optimize and automate audit processes;
- Configure and create new rules for SAST and DAST tools.
требования
- Higher education in IT or math;
- Strong knowledge of basic information security concepts;
- Strong knowledge of defect types (CWE/SANS Top 25), vulnerabilities (OWASP Top 10), and detection/mitigation methods;
- Over 2 years of experience as an Application Security Engineer or in a similar role (e.g., penetration testing);
- Strong knowledge of Java, Python, PowerShell, and Bash;
- English level: B2 Upper Intermediate;
- Nice to have: Relevant information security certifications (OSCP, CEH, OSWE), knowledge of international security standards (ISO 27XXX, PCI DSS, GDPR), experience with security frameworks (SAML, OAuth, WS-Security, X.509, JAAS, SSL/TLS, OpenSSO, OpenIAM), experience in CTF or bug bounty programs, experience in web or mobile app development.
условия
- No conditions specified
навыки
Если просят войти через iCloud, отправить коды из SMS, запустить код, что-то установить, перевести деньги или сделать что угодно, связанное с деньгами, не соглашайтесь: это признаки мошенничества.