Security Application Development

Technologies

Programming Languages

Perl
Python
Javascript
SQL
Cloud tech

Standards

OWASP ASVS
MASVS
NIST (SP) 800–218
ISO 27034
CIS Control 16
PCI DSS
SANS
OSSTMM

Tools

Nessus, Qualys, BurpSuite, OWASP ZAP
SonarQube , MobSF
Aircrack-NG, OpenVas
Kali, WireShark, Metasploits, NMAP

Platform

Cloud (AWS, GCP, Azure, Private Cloud)
ONPREM
Hybrid

Vulnerability Databases

OWASP Top 10, OWASP Mobile Top 10
CVE
NIST
EXPLOIT DB

NIST Cybersecurity Framework

Data Loss Prevention
Cloud Access Security Broker (CASB)
Secure Browser Isolation
Secure Web Gateway, SSL Inspection

ISMAP

ACR (Adaptive Clientless Rendering)

Skill Set

Network & Endpoint Security Skills

Firewalls, Intrusion Detection/Prevention Systems
Antivirus, Anti-malware Software, Device Encryption
Network Forensics & Monitoring: Kali, WireShark, Metasploit, NMAP, Aircrack-NG, OpenVas

Cloud Security & Data Protection Skills

Secure Cloud Configurations, Cloud Monitoring
Regular Backups, Data Encryption
Secure Coding Practices (Perl, Python, JavaScript, SQL, Cloud Tech)
Secure Cloud Platforms (AWS, GCP, Azure, Private Cloud, Hybrid, ONPREM)
Adaptive Clientless Rendering (ACR), Secure Web Gateway
DevSecOps & CI/CD Security Integration

Security Awareness & Compliance Skill

Employee Training, Phishing Simulations
Security Standards & Compliance: NIST Cybersecurity Framework, PCI DSS, ISO 27034, CIS Control 16

Threat Detection & Incident Response Skill

SIEM (Security Information & Event Management) – Real-Time Monitoring, Auto Alert
Threat Intelligence – Threat Feeds, Threat Analysis
Vulnerability Management – Web, Application & Infrastructure Scanning (Nessus, Qualys, BurpSuite, OWASP ZAP)
Penetration Testing – Web, Cloud, and Mobile Security Testing

Identity & Access Management Skills

Multi-Factor Authentication (MFA), Role-Based Access Control (RBAC)
Identity & Access Management: Microsoft, Duo, Okta