Report this Job
This is more as "Application Security Engineer/ Lead" role. Put simply three things are needed in a candidate, which are listed below with knowledge check tips.
Experience in creating strategy for application "Ransomware protection" and recovery, for which the candidate should have sound knowledge of blackbox/greybox/whitebox security assessments of applications (including data backup strategy) >
Hands-on knowledge of application security and testing >
J2EE, Web Frameworks or API Application development, Security and Testing >
Profile won't be a fit if someone who started their career as info security engineer, it will not fit our requirement because they will not have App Dev experience and how app data requirements work. So, the candidate should have some App Dev skills (any technology, Java, VB, .Net). along with Application security.
The Demand is App Security Lead where Security is very specific to ransomware protection and not generic SAST, DAST.
Ask the questions to Candidate while screening and take writeup from candidate on below questions.
- Were you part of any Airgap implementations ?
- What solution did you use for Airgap Implementations ?
- Were you involved in the recovery strategy from the Airgap ?
AKT Corp
