NST Cyber - Your Trusted Enterprise CTEM Partner

• Create test plan for developed product(s), and subsystems. • Create testing strategy and automation testing scripts for the product in CI/CD pipeline. • Study and understand the design of the solution to prepare effective test plan and automation scripts. • Automate testing of the applications using testing automation tools. • Designs quality assurance and test processes for portions and subsystems of end-user applications, systems software, and firmware running on hardware, local, networked, and Internet- based platforms. • Perform code coverage analysis • Communicate with product owner, dev teams, product manager apprise of the issues or suggestions if any. • Understand the business logic and requirements, and perform targeted automation scripts in order to ensure thoroughness. • Documentation and tracking of test cases, and periodic reporting of bugs, status, and test reports.

• Lead and mentor a team of developers to deliver high-quality software solutions. • Collaborate with product managers, architects, and other stakeholders to understand project requirements and provide technical guidance. • Hands-on development using TypeScript, MongoDB, NestJS, Angular, Serverless architecture, Python, Container and Orchestration (Docker and Kubernetes). • Design the solution architecture and project framework for the dev team to build on. • Oversee and actively contribute to the design and architecture of scalable and maintainable software systems. • Lead sprint planning and ensure the team meets project milestones and deadlines. • Delegate tasks effectively, considering the strengths and expertise of individual team members. • Clear blockers for developers by addressing technical challenges and providing guidance. • Conduct code reviews to maintain code quality, consistency, and adherence to coding standards. • Explain features and bugs to developers, fostering a collaborative and transparent development environment. • Collaborate with cross-functional teams to ensure alignment between technical solutions and business goals.

• Perform in-depth static secure code analysis with open source and commercial tools • Perform Threat Modeling and in-depth manual secure code reviews • Perform security engineering reviews • Reverse Engineering App binaries and analyzing the decompiled/disassembled code • Prepare advisory for developers of the application on secure coding practices for addressing vulnerabilities identified • Collecting evidence to demonstrate the findings • Collaborating with client-side application security and development teams • Handle enterprise SAST projects involving a variety of programming languages including and not limited to web applications with Java, .NET, etc., Android and iOS mobile applications programming languages • Execute code-aware security assessments in adherence with industry standards like OWASP ASVS, OWASP MASVS, OWASP Top10, OWASP Mobile Top 10, SANS 25, PCI-DSS, HIPAA, MITRE-CWE etc. • Experience with enterprise SAST projects involving a variety of programming languages including and not limited to web applications with Java, .NET, etc., Android and iOS mobile applications programming languages

• Collaborate with cross-functional teams to understand project requirements and translate them into technical specifications. • Design, develop, and maintain scalable and efficient backend systems using TypeScript and NestJS. • Implement and optimize database schemas using MongoDB and TypeORM. • Integrate AWS services to enhance the functionality and performance of the backend architecture. • Work on serverless architecture to build and deploy microservices. • Write clean, maintainable, and efficient code while adhering to coding standards and best practices. • Conduct code reviews to ensure code quality and mentor junior developers. • Troubleshoot and debug issues, providing timely resolutions. • Stay updated on industry trends and emerging technologies to recommend improvements and enhancements.

• Architect and manage secure, scalable AWS infrastructure across Dev, QC, Staging, and Production environments • Lead automation initiatives to streamline CI/CD pipelines and reduce hosting costs • Deploy and maintain production-grade AWS EKS clusters with autoscaling, monitoring, and secure workload deployment • Develop Infrastructure as Code using Terraform and extend support to multi-cloud environments • Administer MongoDB Atlas with a focus on performance, backup, and security • Troubleshoot complex infrastructure issues and mentor junior engineers

• Perform intelligence led penetration testing of internet facing web, infrastructure, cloud and mobile assets. • Analyse results from various tools to identify potential threats and vulnerabilities. • Research and stay up-to-date on the latest Common Vulnerabilities and Exposures (CVEs) and trending zero-day vulnerabilities. • Document findings and recommendations in clear and concise reports. • Foster a collaborative and supportive work environment effectively in the best interests of the organisation.

• Conduct comprehensive intelligence-led security assessments, including vulnerability scanning and penetration testing on internet facing assets, including web, network, mobile and cloud. • Design and execute sophisticated test cases to identify critical vulnerabilities in web applications, networks, and mobile platforms. • Develop testing scripts and procedures for comprehensive assessment requirements. • Research and analyse the latest trending vulnerabilities and zero-day threats, staying ahead of emerging security risks. • Document findings and recommendations in clear, concise, and actionable reports. • Communicate security risks and mitigation strategies to stakeholders at all levels. • Lead a small team of consultants/associate consultants, review and provide feedback on team member's deliverables, provide mentorship and guidance to help team members enhance their skills and knowledge. • Foster a collaborative and supportive work environment effectively in the best interests of the organisation.

• Conduct comprehensive intelligence-led security assessments, including vulnerability scanning and penetration testing on internet facing assets, including web, network, mobile and cloud. • Analyse results to identify critical vulnerabilities and recommend effective mitigation strategies. • Stay updated on the latest trending vulnerabilities and zero-day threats, staying ahead of emerging security risks. • Document findings and recommendations in clear, concise, and actionable reports. • Communicate security risks and mitigation strategies to stakeholders at all levels. • Foster a collaborative and supportive work environment effectively in the best interests of the organisation.

• Develop and maintain automated test scripts using Selenium/Cypress • Write and execute test plans, test cases, and test scripts for functional, regression, and UAT testing • Perform manual testing when necessary • Identify, document, and track bugs using a bug tracking system • Collaborate with developers and other stakeholders to ensure quality throughout the software development lifecycle • Contribute to the improvement of testing processes and methodologies • Set up and maintain test environments using Docker • Work in a Linux environment for testing and development purposes • Participate in code reviews and provide feedback on testability • Perform API testing using tools like Postman to validate RESTful APIs and ensure their functionality and performance • Conduct Database testing, including writing and executing SQL queries to validate data integrity, ensure proper functionality, and verify database interactions

• Managing a portfolio of Large Enterprise accounts to achieve long-term success • Developing positive relationships and handling customers’ needs • Actively sourcing new Enterprise sales opportunities through cold-calling and emailing. • Manage the entire sales cycle • Developing in-depth knowledge of product features and benefits. • Support and solve problems for clients by understanding and exceeding their expectations • Illustrate the value of products and services to create growth opportunities • Perform prospecting activities such as cold calling and networking • Follow up with clients regularly to ensure needs are being met and identify opportunities.