Kotak Mahindra Bank – Software Test Engineering II-SUPPORT SERVICES-Applications-CTB

Job Description

The successful candidate will have a strong background in penetration testing, including experience with various tools and techniques used to identify vulnerabilities in web applications and APIs. The ideal candidate will be able to analyze complex systems, identify potential security risks, and provide actionable recommendations for remediation.
Conduct thorough penetration testing of web applications and REST APIs using a variety of tools and techniques
Identify vulnerabilities in web applications, including but not limited to:
SQL injection
Cross-Site Scripting (XSS)
Cross-Site Request Forgery (CSRF)
Authentication and authorization weaknesses
Session management issues
Test REST APIs for security vulnerabilities, including but not limited to:
Input validation and sanitization
Error handling and logging
Authentication and authorization mechanisms
Data encryption and transmission
Analyze results and provide detailed reports outlining findings, recommendations for remediation, and estimated timeframes for implementation
Collaborate with development teams to ensure identified vulnerabilities are addressed and remediated in a timely manner
Stay up-to-date with the latest security threats, tools, and techniques through ongoing training and professional development