Information Security Engineer
Remote · Bengaluru, Karnataka, India or IN
Job Summary
Information Security Engineer responsible for conducting vulnerability assessments across applications, systems, and networks; communicating vulnerabilities and remediation actions to internal teams; performing code reviews to identify security gaps; developing internal tools and automation using AI; supporting regular penetration testing; staying current on information security threats; and training security staff on vulnerability management processes and tools; requires hands-on experience with vulnerability assessment tools, OWASP methodologies, and strong communication skills; Bachelor’s degree and 3–5 years of experience; certifications such as GIAC or CEH are preferred; remote work is available from Bengaluru, Karnataka, India.
Required Qualifications
- Bachelor’s degree in Engineering, Computer science or equivalent
- 3 to 5 years experience
- Hands-on experience with network vulnerability assessments
- Hands-on experience with Application scans and code reviews of application codes developed in various technologies
- Knowledge of OWASP tools and methodologies
- Competency with network security and information security concepts and technologies
- Thorough knowledge of Windows OS as well as Linux and Unix variants
Desired Qualifications
- Experience with vulnerability scanning tools (Qualys, Nessus, Nexpose, Saint)
- Experience with web application vulnerability scanning tools (HP WebInspect, Burp Suite Pro)
- Experience with static analysis tools (IBM Appscan Source, HP Fortify)
- Experience with high level programming languages (Java, C, C++, .NET (C#, VB))
- Technical writing experience and/or web development tools a plus
- Experience presenting to or training technical audiences a plus
- Bachelor’s degree in Engineering, Computer science or equivalent
- 3 to 5 years experience
- GIAC or CEH certification
- Hands-on experience with network vulnerability assessments
- Hands-on experience with Application scans and code reviews
- Knowledge of OWASP tools and methodologies
- Competency with Windows OS as well as Linux and Unix variants
- Experience with vulnerability management tooling
- Experience with vulnerability assessment reporting and metrics
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.