Job Description
We are looking for an experienced Application Security Consultant to strengthen the security posture of enterprise web applications, APIs, and backend systems built on ASP.NET Web Forms, .NET Core, and AngularJS.
Key Responsibilities:-
Conduct security assessments of web apps, APIs, and frontend systems
Identify and remediate vulnerabilities aligned with OWASP Top 10 and SANS/CWE
Perform threat modelling (STRIDE), secure code reviews, and penetration testing
Secure AngularJS frontends (XSS, DOM-based attacks, template injection, CSP implementation)
Implement encryption best practices (data-at-rest, TLS/SSL, AES/RSA, secure hashing)
Harden APIs and servers (secure headers, HSTS, CSP, IIS/Nginx hardening)
Conduct SAST, DAST, SCA and dependency assessments (NuGet & npm)
Threat Modelling Analysis & Documentation
Strengthen authentication & IAM (OAuth 2.0, JWT, MFA)
Perform DB security testing (SQL...